3a07570372cfbb49ec7cdbba2022cee5_JaffaCakes118

General

Target

3a07570372cfbb49ec7cdbba2022cee5_JaffaCakes118
Size

30KB
MD5

3a07570372cfbb49ec7cdbba2022cee5
SHA1

ead78405a731382ec960562692a4c1a1d2361d40
SHA256

2e1389d0e7d311cf5a4cc2813b9a12279a892d23a5a4b71c92c980883b7d0d55
SHA512

df7d29c018490535b19bfa154a45dd0fe729a7e754e0d409a2226d4a0870e38f53356b396c8e3b6d6b1ce8a5006c931287174c4d6623096743c4177a716cac20
SSDEEP

768:V/S7mzqEYxiFrmTu6zNrMd3IVLkWNeUV25Ry3FIxTQeLG:VQXEAzidOVNeUCRIFIxTc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a07570372cfbb49ec7cdbba2022cee5_JaffaCakes118

Files

3a07570372cfbb49ec7cdbba2022cee5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0065b55c3ac1f0d616f69196eec17cc1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
lstrlen
GetTickCount
LocalFree
GetCurrentProcessId
FreeLibrary
lstrcat
MultiByteToWideChar
lstrcmpiW
LocalAlloc
VirtualProtect
GetCommandLineA
lstrlenW
lstrcpyn
SetEvent
lstrcmpi
GetModuleHandleA
lstrcpynW
lstrcpy
VirtualAlloc
GetModuleHandleW
lstrcpyW
lstrcmpW
GetCurrentThreadId
lstrcatA
LoadLibraryW
lstrcmpA

user32

GetWindowTextLengthW
LoadImageA
DefWindowProcW
GetDC
LoadCursorW
GetSystemMenu
MoveWindow
UpdateLayeredWindow
GetDlgItem
LoadIconW
GetWindowTextA
CharUpperA
LoadStringW
GetSystemMetrics
LoadImageW
EnableWindow
GetCapture
LoadMenuW
GetForegroundWindow
ReleaseDC
LoadCursorA
LoadIconA
RegisterClassExA
GetKeyState
CharUpperW
UpdateWindow
RegisterClassExW
DestroyWindow
CreateWindowExA
DefWindowProcA
DrawIcon
GetMessageW
GetMenu

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 333B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0065b55c3ac1f0d616f69196eec17cc1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 14KB - Virtual size: 14KB

.rsrc Size: 1024B - Virtual size: 972B

.reloc Size: 512B - Virtual size: 333B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 14KB - Virtual size: 14KB

.rsrc
Size: 1024B - Virtual size: 972B

.reloc
Size: 512B - Virtual size: 333B