3f658c22b7fb9f1d9201e58c00291354_JaffaCakes118

General

Target

3f658c22b7fb9f1d9201e58c00291354_JaffaCakes118
Size

56KB
MD5

3f658c22b7fb9f1d9201e58c00291354
SHA1

c4187721f5aaf0c55c4a04b4fb2b8f83dbe0c2bd
SHA256

2e3529feaf2a71667b89b7f853f4d2da55ef0592e25b9359a4eb53a073d71427
SHA512

b8cce4df5942069d089e7333da823fdde476d9b84a7cfac83dec6ca35967a5c3e6b51e528b890230f9392550b2cb80e19aab5eb5bacefa34a4096c6acd85e816
SSDEEP

768:ZAFZNpvporMx8UbJTVxmmbxDWswNWaYloDcDbpBL:ZAFZbGAx84HxmOCqoADbp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f658c22b7fb9f1d9201e58c00291354_JaffaCakes118

Files

3f658c22b7fb9f1d9201e58c00291354_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7b3c984074022699fccd56866c20f616

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ReadFile
GetFileSize
CreateFileA
GetModuleHandleA
SetFilePointer
EndUpdateResourceA
UpdateResourceA
BeginUpdateResourceA
WriteFile
CopyFileA
LockResource
LoadResource
SizeofResource
FindResourceA
CreateMutexA
OpenMutexA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
HeapFree
HeapReAlloc
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetEnvironmentVariableA

user32

EnableWindow
GetCursorPos
GetWindowRect
PtInRect
LoadCursorA
SetCursor
MessageBoxA
SetDlgItemTextA
GetDlgItemTextA
IsDlgButtonChecked
DialogBoxParamA
EndDialog
GetDlgItem

comdlg32

GetOpenFileNameA

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b3c984074022699fccd56866c20f616

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 12KB - Virtual size: 11KB