3fd026eae0445f692e5c9a096c6ef140_JaffaCakes118

General

Target

3fd026eae0445f692e5c9a096c6ef140_JaffaCakes118
Size

342KB
MD5

3fd026eae0445f692e5c9a096c6ef140
SHA1

09214cfe8c0e96e6fb0d5acb1ad6c4e8801993aa
SHA256

f73ba36c53ccbaa581756ee0b168ebd9606a3a8bd7260dd108347350d9998851
SHA512

d8e2854f2a0c0494a58952662ae885b68b4049eaf73ee6e69dcb53fc37c17d0d393f94e26f23299a9d9e37cf11fb6568fd05dd481b78c21dba0bbae3b327034b
SSDEEP

6144:Kg8EZmnGZl9zcSNYQg+hgZ5Fw15xLuWgy5Tz0nWVR6OxzjO4YVoqb3muhbkqf/EP:KoZmnGZl9zNNYQg+hgZ5Fw15xLuWgy5F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fd026eae0445f692e5c9a096c6ef140_JaffaCakes118

Files

3fd026eae0445f692e5c9a096c6ef140_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4f0eb5cdd8b131cedfb1a57003da6f40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
HeapAlloc
GetLastError
GetFileAttributesA
HeapFree
ExitProcess
TerminateProcess
GetCurrentProcess
CloseHandle
WriteFile
GetFileType
CreateFileA
GetCommandLineA
GetVersion
SetFilePointer
HeapReAlloc
SetEndOfFile
RtlUnwind
RaiseException
MoveFileA
DeleteFileA
GetTimeZoneInformation
GetSystemTimeAsFileTime
SetHandleCount
GetStdHandle
GetStartupInfoA
ReadFile
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetProcAddress
GetTempFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
MultiByteToWideChar
LCMapStringA
LCMapStringW
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
PeekNamedPipe
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
GetFullPathNameA
GetDriveTypeA
FindFirstFileA
GetCurrentDirectoryA

Sections

.text
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

XOR
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4f0eb5cdd8b131cedfb1a57003da6f40

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 268KB - Virtual size: 265KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 36KB - Virtual size: 45KB

XOR Size: 2KB - Virtual size: 2KB

.text
Size: 268KB - Virtual size: 265KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 36KB - Virtual size: 45KB

XOR
Size: 2KB - Virtual size: 2KB