5cc3c437d8220a601dfde776d2cd57ac_JaffaCakes118

General

Target

5cc3c437d8220a601dfde776d2cd57ac_JaffaCakes118
Size

3.4MB
MD5

5cc3c437d8220a601dfde776d2cd57ac
SHA1

7ac021a1915cef476e74c24ead0e20d2a2cf1e90
SHA256

78b448c596d332c7b4d74d790ac15e89e6e26e92ff7036f2156ed128c3b8f3b6
SHA512

885931dce7b0a95e59874a2a9511883a84b5aab02215122b229036fbc48d2796f43e26b4670eb0e7eddff34697b0390b3bfa553cc3a249b5ec303aa8d3e3ab52
SSDEEP

98304:XuaTYDwWwXCJ61FVbfJacs17hlbFZsh7SUcc+WFRc:XulDwTSQ/jJladqi3W0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cc3c437d8220a601dfde776d2cd57ac_JaffaCakes118

Files

5cc3c437d8220a601dfde776d2cd57ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9fb9f6a75bb436c526e5e45eb9633c73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetProcAddress
CloseHandle
TerminateProcess
UnhandledExceptionFilter
GetTickCount
SetLastError
HeapFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
CreateFileW
ExitProcess
GetStdHandle
GetStartupInfoW
FindClose
ReadFile
RaiseException
SetEvent
FormatMessageW
TlsGetValue
GetModuleHandleA
HeapReAlloc
FlushFileBuffers
TlsSetValue
CreateEventW
WriteConsoleW
GetCPInfo
TlsFree
SetFilePointer
GetFileAttributesW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GetOEMCP
FindNextFileW
FindFirstFileW
DeleteFileW
LocalAlloc
DecodePointer
GetVersionExW
CreateFileA
OutputDebugStringW
LoadLibraryA
CreateDirectoryW
GetFullPathNameW
GetExitCodeProcess

user32

LoadStringW
DestroyWindow
MessageBoxW
SetWindowLongW
GetWindowLongW
GetMessageW
GetDlgItem
GetSystemMetrics
GetClientRect
EnableWindow
IsWindow
LoadCursorW
EndDialog
SetWindowTextW
LoadIconW
SetFocus
SetForegroundWindow
GetSysColor
PeekMessageW
SetCursor
InvalidateRect
RegisterClassW
EnableMenuItem
UpdateWindow
SystemParametersInfoW
GetKeyState
MessageBoxA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fb9f6a75bb436c526e5e45eb9633c73

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB

.idata
Size: 2KB - Virtual size: 1KB