48adc5f702e0995b86460a7b2558a15e_JaffaCakes118

General

Target

48adc5f702e0995b86460a7b2558a15e_JaffaCakes118
Size

76KB
MD5

48adc5f702e0995b86460a7b2558a15e
SHA1

e9e152cf589ffc918dc0555f0b1edc6a6dea0e70
SHA256

e774df7cc24f68df9d04124dc343f2755875ca8112ee31e78ca19d38cf07a742
SHA512

6705095267dee00bfe289b15f844cdc7a5c5ecffbaae9e011e6b52dc7e4e7cd8342d99a6081d00d7f40f5d21b9b7679b0b3856a39934716af1be6a8a97cb3120
SSDEEP

1536:HNrGvhM+XeXCuMbjAb3mcRypQkAQF2p2wjX:HaXXekHAKYyKkT8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
48adc5f702e0995b86460a7b2558a15e_JaffaCakes118

Files

48adc5f702e0995b86460a7b2558a15e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fed4692720d33e68436de052d48e29d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetCPInfo
GetConsoleMode
GetComputerNameA
OpenFile
CreateProcessA
ReadConsoleA
DeleteAtom
ExitThread
WriteFile
CreateDirectoryA
Sleep
FindAtomA
GetCommandLineA
GetStdHandle
CopyFileExA
ReadConsoleA
CreateThread
CopyFileW
ReadFile
GetLastError
DeleteAtom
ExitThread
WriteFile
GetFileSize
GetComputerNameA
CreateProcessA
OpenFileMappingA
GetComputerNameA
GetLastError
GetFileSize
FindAtomA
OpenFileMappingA
GetStdHandle
DeleteFileW
ExitThread
CopyFileW
CreateProcessA
CopyFileExA
WriteFile
DeleteFileA
CreateThread
Sleep
GlobalFree
CreateProcessA
OpenFileMappingA
DeleteFileA
CopyFileA
GetFileTime
SetLastError
FindFirstFileA
GetFileSize
GetLastError
DeleteFileW
GetComputerNameA
OpenFile
CreateThread
FindAtomA
CreateDirectoryA
SetLastError
Sleep
ReadFile
CopyFileExW
GlobalFree
OpenFileMappingA
OpenFile
DeleteFileA
GetCPInfo
GetConsoleMode
GetLastError
DeleteAtom
GetComputerNameA
GetFileTime
GetCommandLineA
GetFileSize
CopyFileW

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mvdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fed4692720d33e68436de052d48e29d6

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 4KB - Virtual size: 2KB

.mvdata Size: 48KB - Virtual size: 45KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 5KB

.idata Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 28KB

.text
Size: 4KB - Virtual size: 2KB

.mvdata
Size: 48KB - Virtual size: 45KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 5KB

.idata
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 28KB