5cb55ceb77f993fb568f05b0f00f8735_JaffaCakes118

General

Target

5cb55ceb77f993fb568f05b0f00f8735_JaffaCakes118
Size

200KB
MD5

5cb55ceb77f993fb568f05b0f00f8735
SHA1

e1a614e721db4c398b7550b1fb12056abb3c01ad
SHA256

6cf649100999d9148688fa1323d613f5b21b68493af70e78f1c408f6ba7de029
SHA512

e88418fc4e8d60eee2416e173e0045fd4fd48ebf258388d8b6f9dca3a40edc9619c6d1c3abc43d2f7275109a74df7c1a58614e59610f496282a94ff554774a4f
SSDEEP

3072:gPvWU4uuCh38zLB6URNl7XQyMEh61tG/IPnz4Xva/ywdARaioAmdrffJUU11QFOD:3mw3Yoky3Unz4/agai5mt6eQto

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cb55ceb77f993fb568f05b0f00f8735_JaffaCakes118

Files

5cb55ceb77f993fb568f05b0f00f8735_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b9cd2291dc627849fab10bf0645b3bd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetStartupInfoW
SetSystemPowerState
FormatMessageW
GetCPInfo
GetTimeFormatW
InterlockedExchange
GetVolumeInformationW
FindCloseChangeNotification
LoadLibraryW
ExitProcess
GetCurrentProcessId
GetFileTime
GetModuleFileNameW
SetTapePosition
LoadLibraryA
GetProcAddress
CreateFileA
FlushFileBuffers
GetVersion
HeapFree
GetLastError
CloseHandle
ReadFile
TerminateProcess
GetCurrentProcess
SetFilePointer
UnhandledExceptionFilter
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
GetModuleFileNameA
GetStringTypeA
GetStringTypeW
HeapAlloc
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetStdHandle
SetEndOfFile

user32

RegisterWindowMessageW
SendMessageW
FindWindowW

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xxxxx
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b9cd2291dc627849fab10bf0645b3bd

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 96KB - Virtual size: 92KB

.data Size: 16KB - Virtual size: 301KB

.xxxxx Size: 4KB - Virtual size: 2KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 96KB - Virtual size: 92KB

.data
Size: 16KB - Virtual size: 301KB

.xxxxx
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 80KB - Virtual size: 79KB