4d41ec98a7dfcecb0661d2a9cbb403b9_JaffaCakes118

General

Target

4d41ec98a7dfcecb0661d2a9cbb403b9_JaffaCakes118
Size

11KB
MD5

4d41ec98a7dfcecb0661d2a9cbb403b9
SHA1

2371d1e5927c79a1ce5c00e938cd815b448efd28
SHA256

62a7c9b00cef1bbcacc170ffcb9fa55e78aaf77784c8f56fbaef5aa28a2932c0
SHA512

89edf06717224e58689c3f33c16403bbf888e800cb5734e91170bc6fb1f55f792f6b8c0a3287ed96f36df6ed21f79459a3f57fe4953aeb7d686f06738e972bf4
SSDEEP

192:jejxz38hsuWqoQLbLpBgq/kVGl81oynM/2rL:joN56HHgq/kVGl81q/2r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d41ec98a7dfcecb0661d2a9cbb403b9_JaffaCakes118

Files

4d41ec98a7dfcecb0661d2a9cbb403b9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93feb5c286a824002ba01fe687c62d5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp60

??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
?_C@?1??_Nullstr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@CAPBGXZ@4GB
?_Tidy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEX_N@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegOpenKeyExW
RegSetValueExW

user32

wsprintfW

msvcrt

fseek
_wfopen
ftell
getenv
_snprintf
memset
swprintf
sprintf
__dllonexit
_onexit
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
rewind
fread
fclose
printf
memcpy
strncat
strcat
fwrite
_wgetenv
_snwprintf
wcsstr
_wremove
malloc
free
_EH_prolog
__CxxFrameHandler
strlen
??2@YAPAXI@Z
strcpy
wcslen
strstr

kernel32

WriteFile
SetFileAttributesW
CreateProcessW
CreateThread
lstrlenA
Sleep
CreateMutexW
GetLastError
GetStartupInfoA
GetModuleHandleA
SetErrorMode
FindFirstFileW
FindNextFileW
GetProcessHeap
HeapAlloc
HeapFree
GetModuleFileNameW
CreateFileW
GetFileSize
ReadFile
CloseHandle
ExitProcess

Sections

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93feb5c286a824002ba01fe687c62d5a

Headers

File Characteristics

Imports

msvcp60

advapi32

user32

msvcrt

kernel32

Sections

.data Size: 7KB - Virtual size: 6KB

.data
Size: 7KB - Virtual size: 6KB