63b3109a28ac0618aea62a9e0fdf2ce3_JaffaCakes118

General

Target

63b3109a28ac0618aea62a9e0fdf2ce3_JaffaCakes118
Size

80KB
MD5

63b3109a28ac0618aea62a9e0fdf2ce3
SHA1

336b5507ffa0f9252fddee7ae1e1759bd228a18f
SHA256

e09017007cc08fb1462e334b56c493cde85bb7fc048a161d18f021eecf5cafb5
SHA512

e5446fecd3fbbd6863ccdd0fdca8a65b275586035448d461141a6ccca3691f0219678a8cea002bbb480caa244438f4746c61ff64456ed11d62d4e9092e31b8aa
SSDEEP

768:KQ9cd/R3iSJ8uuPvSZGev6IX2nwgRSM3R423cVfnvrProSLOMWsyqAgg:l9cpJiCuCk6t2noWugcVfvDrGsyqFg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63b3109a28ac0618aea62a9e0fdf2ce3_JaffaCakes118

Files

63b3109a28ac0618aea62a9e0fdf2ce3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15da69b9ea53787e16f28734db07b417

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetVersionExA
Sleep
GetExitCodeProcess
CreateProcessA
GetStringTypeW
GetStringTypeA
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetLastError
WriteFile
ReadFile
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
MultiByteToWideChar
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
FlushFileBuffers
SetStdHandle
CreateFileA
GetProcAddress
LoadLibraryA
LCMapStringA
LCMapStringW
SetEndOfFile

user32

MessageBoxA

Sections

Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.petite
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

15da69b9ea53787e16f28734db07b417

Headers

File Characteristics

Imports

kernel32

user32

Sections

Size: 52KB - Virtual size: 52KB

.petite Size: 4KB - Virtual size: 4KB

Size: 12KB - Virtual size: 12KB

Size: 8KB - Virtual size: 8KB

.petite
Size: 4KB - Virtual size: 4KB