3ba5ba91351c02fbfdc782c60e7edf0b_JaffaCakes118

General

Target

3ba5ba91351c02fbfdc782c60e7edf0b_JaffaCakes118
Size

354KB
MD5

3ba5ba91351c02fbfdc782c60e7edf0b
SHA1

9411ee5366fce2056cacc8697ef85a3156a6d227
SHA256

03daa52dd2ae5afb838f94fe1b277538d9a0864fcf600f971b6c9a49ae8ceda8
SHA512

2913f6546954f2cb7849235a589c47d7102f3ed469e5d404da95d289449f0465487b263c670232fef1da4fc3f8706ccf33312722ad163d42af70f0fbb903068b
SSDEEP

6144:oI+W5S2jB1ixfafmPV0tpXnMj9hw3Tv87Wy08Rq9QUk15q29Lt+PRCZLO:oI82jBI/6DUPwjv8da7IA29B+PRB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ba5ba91351c02fbfdc782c60e7edf0b_JaffaCakes118

Files

3ba5ba91351c02fbfdc782c60e7edf0b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c5c3497c441fe1e28485453583058c63

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathW
GetTempFileNameW
CompareStringW
InterlockedIncrement
InterlockedDecrement
HeapFree
GetProcessHeap
CloseHandle
ReleaseMutex
GetSystemTime
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
MultiByteToWideChar
FileTimeToSystemTime
CopyFileW
SystemTimeToFileTime
CreateFileMappingW
GetFileSizeEx
MapViewOfFile
GetFileSize
UnmapViewOfFile
CreateFileW
GetLastError
HeapAlloc
LocalFree
LocalAlloc
GetModuleHandleA
DeleteFileW
VirtualProtect
GetVersion
GetLocalTime
GetStartupInfoA

user32

LoadStringW

advapi32

RegCloseKey
RegOpenKeyExW
RegEnumKeyExW

ole32

CLSIDFromProgID
CoCreateInstance

msvcrt

_controlfp
localtime
time
_except_handler3
memcpy
memmove
malloc
isalpha
atol
_XcptFilter
free
memset
_exit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 323KB - Virtual size: 645KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5c3497c441fe1e28485453583058c63

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 323KB - Virtual size: 645KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 323KB - Virtual size: 645KB

.rsrc
Size: 1KB - Virtual size: 1KB