450c09e7b8d073d9f04b643ce356959d_JaffaCakes118

General

Target

450c09e7b8d073d9f04b643ce356959d_JaffaCakes118
Size

41KB
MD5

450c09e7b8d073d9f04b643ce356959d
SHA1

1936454fde60b7b23cc77dc5208690de7ab633a0
SHA256

b307dce885eb84ba210b9085319ace92f072e0ab456a9fc9005bcb00eef9f353
SHA512

2cd64870c87b40a0183b2d43d45f3fa11d96cbabd09b5713280e1ae7b15d174e9802777225dc99b6ff5c18fb7b9d8947d5493860f2484374ffa61a6cd5c298fa
SSDEEP

768:it5DUOnO9RS5qtYngI8te10VkQODxBTP5tSbWvgtAxmha5:UoOkVtYnHSe6hODxBSyg3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
450c09e7b8d073d9f04b643ce356959d_JaffaCakes118

Files

450c09e7b8d073d9f04b643ce356959d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

03d987039342b3b6b6941813307c35be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Xlen@std@@YAXXZ
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcrt

free
__CxxFrameHandler
??2@YAPAXI@Z
wcscmp

kernel32

GetSystemTime
GetModuleFileNameA
Sleep
LoadResource
LockResource
SizeofResource
GetWindowsDirectoryA
CreateFileA
WriteFile
CloseHandle
TerminateProcess
OpenProcess
Process32NextW
CreateToolhelp32Snapshot
GetProcAddress
LoadLibraryA
GetTempPathA
ExitProcess
SetFileAttributesA
WinExec

user32

wsprintfA

netapi32

Netbios

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 768B - Virtual size: 641B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03d987039342b3b6b6941813307c35be

Headers

File Characteristics

Imports

msvcp60

msvcrt

kernel32

user32

netapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 768B - Virtual size: 641B

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 768B - Virtual size: 641B

.rsrc
Size: 34KB - Virtual size: 34KB