3d0026bd522affb2b49a92e05bd5faff_JaffaCakes118

General

Target

3d0026bd522affb2b49a92e05bd5faff_JaffaCakes118
Size

172KB
MD5

3d0026bd522affb2b49a92e05bd5faff
SHA1

e8fd6411ca227a7997086c26a502e9f48722c8b8
SHA256

be03d9e827cab5eda5874c9b6568aafd2f4949e869936ca07f0f8fd775c8a52e
SHA512

c4ed8daa47ead295034c0c642509967ed446a390012e1f2c5f4fc7cd73862a5207ddc5a9d86ab0e95c577a8c0a6fb6340980f6f7061540b74cb97c041b62f4e0
SSDEEP

3072:suD9D6PEahmtTtsTxaWzdKE5i8061ThO3hcEBq:suD5Ahmt2TxNJ5jR1TExcEc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d0026bd522affb2b49a92e05bd5faff_JaffaCakes118

Files

3d0026bd522affb2b49a92e05bd5faff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5678231283e4b25a178892f89363e33b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
CreateFileA
LoadResource
FindResourceA
lstrcpyA
SetLastError
GetLastError
lstrcatA
HeapFree
HeapAlloc
ReadFile
SetFilePointer
GetModuleFileNameA
ExitProcess
ReleaseMutex
CreateMutexA
GetCommandLineA
CreateThread
CreateDirectoryA
GetCurrentThreadId
GetWindowsDirectoryA
FreeLibrary
LocalAlloc
InterlockedExchange
RaiseException
RtlUnwind
HeapReAlloc
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetVersion
SetUnhandledExceptionFilter
VirtualFree
VirtualAlloc
IsBadWritePtr
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
GetFullPathNameA
GetCurrentDirectoryA
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA

Sections

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5678231283e4b25a178892f89363e33b

Headers

File Characteristics

Imports

kernel32

Sections

.data Size: 52KB - Virtual size: 49KB

.rsrc Size: 116KB - Virtual size: 113KB

.data
Size: 52KB - Virtual size: 49KB

.rsrc
Size: 116KB - Virtual size: 113KB