5e4ac8fc354b9092aa359f71c8078735_JaffaCakes118

General

Target

5e4ac8fc354b9092aa359f71c8078735_JaffaCakes118
Size

148KB
MD5

5e4ac8fc354b9092aa359f71c8078735
SHA1

0dbad12c49655ffcc798c23868b0c43687dc25f3
SHA256

55a72913077e17baa07c7e944bfec4897611e5c18100f32d77e0d926b573ac11
SHA512

88eec3ad3ad188b9befbf309644b7735b61209b756acb8dbd313140967c6e7e980417ab212a7bbe3cecf11787daa08ef160f3504e69929edd71e2b9aedfa754f
SSDEEP

1536:VuknD+TYr+8pBSaecxqdK0iSusnCttp28+1H0Kav4jh4Lvv0nwg2Cx5wCT+nR4eh:VDwc0P8+1H8LvywSx7T+R4et9p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e4ac8fc354b9092aa359f71c8078735_JaffaCakes118

Files

5e4ac8fc354b9092aa359f71c8078735_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7c99a0edb7c2d3340ce6916d0d4d6074

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetModuleFileNameA
GetExitCodeProcess
WaitForSingleObject
GetEnvironmentVariableA
SetPriorityClass
GetLastError
CreateProcessA
GetStdHandle
HeapFree
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetCommandLineA
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
SetHandleCount
GetFileType
Sleep
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
CloseHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InterlockedExchange
LoadLibraryA
HeapSize
MultiByteToWideChar
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetLocaleInfoW
CreateFileA
GetModuleHandleA
GetProcAddress
WideCharToMultiByte
GetCurrentProcess
CreateFileW
SetEndOfFile

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c99a0edb7c2d3340ce6916d0d4d6074

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 116KB - Virtual size: 115KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 8KB - Virtual size: 13KB

.text
Size: 116KB - Virtual size: 115KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 8KB - Virtual size: 13KB