3e79332be5871cbaebe11cdfd2b9aa5d_JaffaCakes118

General

Target

3e79332be5871cbaebe11cdfd2b9aa5d_JaffaCakes118
Size

392KB
MD5

3e79332be5871cbaebe11cdfd2b9aa5d
SHA1

2d344687dd08911e5534dbe1642c388f94236d89
SHA256

b62484619dc8e2d9aaec8b4c98c44126049dfe3ba63ac75cf01959943bf22803
SHA512

862905e070745b9e8dfb402097f4574f24ce35fe5afdd2f41c00513e8c5a92630c8e3e68267066eb35ca27ed066366e05281d3659b4df49b394ba03e43d7504a
SSDEEP

6144:0H3s8S3Uhonmjt1KcFAEpRtbZdeq1S4hpyCukpMSHg8qrF9jP4UTf26mvciksT:0cbyonHcuIRtbmCh4kpdH1qRpA2o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e79332be5871cbaebe11cdfd2b9aa5d_JaffaCakes118

Files

3e79332be5871cbaebe11cdfd2b9aa5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e90e5444f9c41825181854813172e532

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
VirtualFree
WriteFile
FreeEnvironmentStringsA
GetProcAddress
GetCurrentThread
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsW
LeaveCriticalSection
GetCurrentProcessId
HeapAlloc
FlushViewOfFile
GetStdHandle
MultiByteToWideChar
GetModuleHandleA
IsBadWritePtr
GetCompressedFileSizeA
FlushFileBuffers
InterlockedExchange
GetVersion
TlsGetValue
GetCPInfo
TlsFree
EnterCriticalSection
CompareStringW
LCMapStringA
CreateFileA
Sleep
ExitProcess
GetTickCount
GetDateFormatA
TlsSetValue
HeapFree
GetEnvironmentStringsW
GetModuleFileNameA
SetLastError
LoadLibraryA
QueryPerformanceCounter
GetEnvironmentStrings
VirtualAlloc
FileTimeToSystemTime
GetACP
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetFileType
GetStringTypeA
HeapDestroy
LCMapStringW
FormatMessageW
WideCharToMultiByte
GetCommandLineA
GetSystemTimeAsFileTime
GetLastError
DeleteCriticalSection
GetTempPathW
GetOEMCP
GetStringTypeW
GetTempFileNameA
GetStartupInfoA
InitializeCriticalSection
TlsAlloc
GetExitCodeProcess
HeapCreate

user32

GetKeyboardLayout
IsWindowVisible
DefFrameProcA
SetWinEventHook
GetClassLongW
CloseClipboard
SetScrollRange
LoadMenuIndirectW
PostMessageW
SendIMEMessageExA
DrawTextExW
ReleaseDC
DdeInitializeW
GetUserObjectSecurity
LoadBitmapW
SetDlgItemTextA

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e90e5444f9c41825181854813172e532

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 118KB - Virtual size: 117KB

.data Size: 268KB - Virtual size: 272KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 118KB - Virtual size: 117KB

.data
Size: 268KB - Virtual size: 272KB

.rsrc
Size: 5KB - Virtual size: 5KB