47cad9f61ada1e1002f51baf6a946179_JaffaCakes118

General

Target

47cad9f61ada1e1002f51baf6a946179_JaffaCakes118
Size

425KB
MD5

47cad9f61ada1e1002f51baf6a946179
SHA1

4973e2d7ff621b598602498e75418421e9002c4e
SHA256

d12e27860e06896132738adfa1e46d87afc5e7db9983f3057419347287e09ce0
SHA512

1a3e2728dfb0ec921d8a58b6454cfa829e8eaef6c440e232f94cd10c1e275960bc03e4ae70c72fa9cd5e1502bfcf1b7c8acbbd5bc954275ffe87cadeaf316a46
SSDEEP

12288:e7N58ih58MvMdgEzJKoD7CYWCX1jjN08izHmNv7IM:uNiicMvDEzTXP/NAzmV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47cad9f61ada1e1002f51baf6a946179_JaffaCakes118

Files

47cad9f61ada1e1002f51baf6a946179_JaffaCakes118
.exe windows:4 windows x86 arch:x86

389e464226194cbe29e44027098de9df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
TlsGetValue
HeapDestroy
EnterCriticalSection
GetProcAddress
GetEnvironmentStrings
HeapReAlloc
WriteFile
FreeEnvironmentStringsW
SetHandleCount
GetCurrentProcessId
HeapAlloc
SetWaitableTimer
GetStartupInfoW
SetLastError
GetModuleHandleA
GetLongPathNameA
UnlockFileEx
WaitForDebugEvent
InterlockedExchange
HeapCreate
UnhandledExceptionFilter
GetCommandLineW
TlsSetValue
DeleteCriticalSection
SetCurrentDirectoryA
LeaveCriticalSection
FreeEnvironmentStringsA
InitializeCriticalSectionAndSpinCount
ExitProcess
GetTickCount
ExitThread
VirtualFree
HeapFree
GetFileType
GetModuleFileNameA
TlsFree
LoadLibraryA
QueryPerformanceCounter
GetEnvironmentStringsW
VirtualAlloc
GetLogicalDriveStringsW
GetCommandLineA
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetLastError
GetStdHandle
InitializeCriticalSection
MultiByteToWideChar
MoveFileW
GetVolumeInformationA
GetCurrentThread
GetSystemTimeAsFileTime
GetModuleFileNameW
EnumSystemCodePagesW
LCMapStringA
GetStartupInfoA
GetVersion
SetCurrentDirectoryW
CloseHandle
IsBadWritePtr

user32

DdeGetData
CopyAcceleratorTableA
SetDoubleClickTime
SystemParametersInfoA
SetWindowTextW
CreateDesktopW
GetDoubleClickTime
RealChildWindowFromPoint
RegisterClipboardFormatA
DlgDirSelectExA
DestroyCaret
ToAscii
KillTimer
CharToOemBuffW
InvertRect
WinHelpA
GetClassInfoA
GetInputDesktop
GetComboBoxInfo
PaintDesktop
OpenIcon
ToUnicode

Sections

.text
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

389e464226194cbe29e44027098de9df

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 147KB - Virtual size: 147KB

.data Size: 268KB - Virtual size: 267KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 147KB - Virtual size: 147KB

.data
Size: 268KB - Virtual size: 267KB

.rsrc
Size: 8KB - Virtual size: 8KB