49ad24d533b0599adf354e810a6da920_JaffaCakes118

General

Target

49ad24d533b0599adf354e810a6da920_JaffaCakes118
Size

25KB
MD5

49ad24d533b0599adf354e810a6da920
SHA1

ad96c94e1baa10e39708ac959fb99b50a2b4c681
SHA256

1873e4a04cbb6d0eaec6a7be8f9b51270e3d39f67bd38b994fd3c3bbc0bc6b4b
SHA512

9d77989656a692407f290aeec2c8bb3afbdd26d906768f72d33a0b831c3c88e9405bdf78c1c3ad15fc49e67e5efdb8a8d85f0b91ff94aaad7a2550d96fb12f2d
SSDEEP

384:qy8z0UfJQXGUHi4IUrj6/FehidqrgiWH50VP1s0PWaj1eyf0xodNFEQI:MhQ294RjAFy9tC50VP5lRHpCQI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49ad24d533b0599adf354e810a6da920_JaffaCakes118

Files

49ad24d533b0599adf354e810a6da920_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a7bdf0eba7e14e32bc0cec124444e2f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\DEfELOPfENT\VCf+\ffffghgfghrrtrtgfhghh\release\main.pdb

Imports

kernel32

GetVolumeInformationA
QueryPerformanceCounter
GetSystemTime
GetLocalTime
CreateFileW
MoveFileExA
GetDateFormatA
FreeResource
SizeofResource
LoadResource
RemoveDirectoryW
MoveFileW
CreateEventW
GetTempFileNameA
GetVersion
LocalAlloc
LocalFree
GetProcessHeap
SetSystemPowerState
GetCPInfo
FindFirstFileW
FindNextFileW
FindClose
CopyFileW
CreateDirectoryA
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualProtect
VirtualAlloc
GetCurrentThreadId
GetCommandLineA
GetModuleHandleA
WriteConsoleA
GetStartupInfoA

ws2_32

WSAStartup
ioctlsocket
listen
ntohl
inet_ntoa
inet_addr
select
recv
send
WSAWaitForMultipleEvents
WSACloseEvent
WSAConnect
WSACreateEvent
WSAGetOverlappedResult
WSASocketA
socket

msvcr71

realloc
_onexit
__dllonexit
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_amsg_exit
_acmdln
_cexit
_ismbblead
wcslen
exit
fclose
fwrite
fputs
fseek
fopen
_XcptFilter
free
malloc
_c_exit
_exit
_controlfp

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a7bdf0eba7e14e32bc0cec124444e2f

Headers

File Characteristics

PDB Paths

Imports

kernel32

ws2_32

msvcr71

Sections

.text Size: 14KB - Virtual size: 13KB

.data Size: 9KB - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 720B

.text
Size: 14KB - Virtual size: 13KB

.data
Size: 9KB - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 720B