3fd5a4c253911afd5baf2617f62ffbf0_JaffaCakes118

General

Target

3fd5a4c253911afd5baf2617f62ffbf0_JaffaCakes118
Size

148KB
MD5

3fd5a4c253911afd5baf2617f62ffbf0
SHA1

76922d716acc01d99e9a9ec3f793238a43aa00da
SHA256

6d0c5fc4e6b829cf76f138ea2a9116095205188063c3a7e38b675894785e5c70
SHA512

51def132158397c5422f44fa8a017a6b37e1cd09a0c8fc48bb824a29487f904bf0ca3a5ea1e0f7cdcd3eb304a884ac99e40d5c518f7b8b3ee9404353fe457bb4
SSDEEP

1536:CQGQv3XBucR+KI3VKtIZgGHQN+YCCugtET:AURY38tICWQiCugtET

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fd5a4c253911afd5baf2617f62ffbf0_JaffaCakes118

Files

3fd5a4c253911afd5baf2617f62ffbf0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c08e86396bd2ab2832a6db57991b6692

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
LoadResource
SizeofResource
FindResourceA
GetModuleHandleA
FindFirstFileA
GetSystemDirectoryA
FindNextFileA
GetDriveTypeA
GetWindowsDirectoryA
GetVersionExA
WriteFile
SetFilePointer
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
IsBadReadPtr
GetLastError
HeapFree
HeapAlloc
RtlUnwind
GetCommandLineA
GetProcessHeap
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress
ExitProcess
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
Sleep
LoadLibraryA
RaiseException
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile
ReadFile

user32

PostMessageA

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c08e86396bd2ab2832a6db57991b6692

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 76KB - Virtual size: 75KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 76KB - Virtual size: 75KB