3fc26910f9c31bd9ba3ccb09132d9ca3_JaffaCakes118

General

Target

3fc26910f9c31bd9ba3ccb09132d9ca3_JaffaCakes118
Size

15KB
MD5

3fc26910f9c31bd9ba3ccb09132d9ca3
SHA1

7a93a13125d1c8a17482b5190881791d1738ef15
SHA256

0f3934bb63dbe92b025a3d41fc1b3c6fda1da9fbd83bede76b8e99aee87f036b
SHA512

7956a1586927429702324f31bfa719508568b0258885990ace872f922f2d6e2109ea4e74f792e46c17d66e732b6ce18c6c0c694f3bb13e64c407cc6d6c0efb6c
SSDEEP

192:frEfplIhSIBJKzeIofqE/HpShVVDvlwr9VYxGz8cig9ofQTW/hH1oynr/NqnGG:fIfplIhBJyeXTf5JVMGzFE5H1h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fc26910f9c31bd9ba3ccb09132d9ca3_JaffaCakes118

Files

3fc26910f9c31bd9ba3ccb09132d9ca3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

34aa595b5b34240711a9a5fe87ca5e93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
ReadFile
CreateFileA
Sleep
DisconnectNamedPipe
DeleteFileA
TerminateProcess
TerminateThread
WaitForMultipleObjects
CreateThread
CreateProcessA
CopyFileA
GetTempPathA
GetSystemDirectoryA
DuplicateHandle
GetCurrentProcess
GetStartupInfoA
CreatePipe
PeekNamedPipe
FreeLibrary
GetProcAddress
LoadLibraryA
GetTempFileNameA
SetFilePointer
GetModuleFileNameA
SetProcessPriorityBoost
SetThreadPriority
GetCurrentThread
SetPriorityClass
lstrcatA
lstrcpyA
GetEnvironmentVariableA
GetShortPathNameA
GetModuleHandleA

shell32

SHChangeNotify
ShellExecuteExA

ws2_32

select
__WSAFDIsSet
WSAStartup
WSASocketA
send
htons
inet_addr
WSACleanup
closesocket
recv
setsockopt
connect

mfc42

ord825
ord823

msvcrt

_except_handler3
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_controlfp
_strnicmp
__set_app_type
sprintf
strchr
strncpy
atol
__dllonexit
_onexit
_exit
_XcptFilter
exit
_acmdln
__getmainargs

msvcp60

??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34aa595b5b34240711a9a5fe87ca5e93

Headers

File Characteristics

Imports

kernel32

shell32

ws2_32

mfc42

msvcrt

msvcp60

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 644B

.rsrc Size: 512B - Virtual size: 160B

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 644B

.rsrc
Size: 512B - Virtual size: 160B