45b7eb197f53a021d5495f5e575a6f5d_JaffaCakes118

General

Target

45b7eb197f53a021d5495f5e575a6f5d_JaffaCakes118
Size

28KB
MD5

45b7eb197f53a021d5495f5e575a6f5d
SHA1

4807db75d2fe4cbce7641a3acb3a03ce7b6d347f
SHA256

032a5e81fb7aa1eb993a2a80b7bceda2d799da18c361e6a6a0561bd3785fb302
SHA512

5c86a32dca9957ebe3314a88110ab7f344bec38ec8ec81693bee6d1334131c62f7437ee0e8c6939fdde74fc80babb0e821fe45eb3b52063b23fdbddff19deec8
SSDEEP

192:3aJgP517TzkxP061Xxa+XqLHvFkZyJfPa0XSVuGdHydw2Ss3NtLMDvPpo9QjR:3BP51zg/BaBbNZpPtSyrtL6Xpo9Qj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45b7eb197f53a021d5495f5e575a6f5d_JaffaCakes118

Files

45b7eb197f53a021d5495f5e575a6f5d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

130c5f1a1f5a0097c737671caa7c00c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateThread
CreateEventA
Sleep
GetTempPathA
CopyFileA
GetModuleFileNameA
GetLastError
WaitForSingleObject
CloseHandle
ReadFile
CreateFileA
GetDriveTypeA
GetLogicalDrives
FindClose
FindNextFileA
WriteFile
FindFirstFileA
CreateDirectoryA
SetFilePointer
GetFileSize
SetEvent
PeekNamedPipe
GetExitCodeProcess
CreateProcessA
GetSystemDirectoryA
GetStartupInfoA
CreatePipe
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
RtlUnwind

shell32

SHGetSpecialFolderPathA
SHFileOperationA

ws2_32

WSAStartup
WSACleanup
gethostname
gethostbyname
inet_ntoa

netapi32

Netbios

wininet

InternetOpenA
InternetCloseHandle
InternetReadFileExA
HttpEndRequestA
InternetWriteFile
HttpSendRequestExA
HttpAddRequestHeadersA
InternetSetOptionA
InternetQueryOptionA
HttpOpenRequestA
InternetConnectA
InternetSetStatusCallback

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

130c5f1a1f5a0097c737671caa7c00c2

Headers

File Characteristics

Imports

kernel32

shell32

ws2_32

netapi32

wininet

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 920B

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 920B