731f34a93cfd64e259cdc3b83e72b4b4_JaffaCakes118

General

Target

731f34a93cfd64e259cdc3b83e72b4b4_JaffaCakes118
Size

118KB
MD5

731f34a93cfd64e259cdc3b83e72b4b4
SHA1

58bf714eb2e8c29fc6bdf57d095494b49f94e105
SHA256

0f30c5936b77bd1b8de49151d6cf32ab8ac8f3b2e181c2ed152ebf0d4fbe8390
SHA512

0e8df42c3a0ee8e94b5a5b55b22f84bed4c7533323ba3965b141d0af722aec90eb40eb78316ad862f51f06ac43440886560ce23e7feef9d8803755d7e115a14a
SSDEEP

3072:snVEzzPHd/ySRhmyERYY0EcCU7+tEGFbr:TP93Ri79c3+thr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
731f34a93cfd64e259cdc3b83e72b4b4_JaffaCakes118

Files

731f34a93cfd64e259cdc3b83e72b4b4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5be96a3247409e344fd156fdb6e29317

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
BeginUpdateResourceA
CancelIo
CopyFileA
CopyFileExA
CreateConsoleScreenBuffer
CreateDirectoryA
DeleteFileA
ExitProcess
FindAtomA
FindFirstChangeNotificationA
FlushViewOfFile
GetACP
GetAtomNameA
GetCommConfig
GetCommandLineA
GetConsoleCP
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetLargestConsoleWindowSize
GetLastError
GetLogicalDriveStringsA
GetModuleHandleA
GetOEMCP
GetPrivateProfileSectionNamesA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetSystemDefaultLCID
GetThreadContext
GlobalUnfix
GlobalUnlock
GlobalWire
HeapCreate
HeapDestroy
HeapFree
HeapValidate
IsBadWritePtr
LocalFlags
LocalHandle
LocalSize
MoveFileExA
OpenEventA
PulseEvent
QueryPerformanceCounter
ReadConsoleA
ResetEvent
SetLastError
SetUnhandledExceptionFilter
WaitForSingleObject
WideCharToMultiByte
WritePrivateProfileStringA

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
fputs
free
malloc
memset
signal
srand
strncpy
time

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5be96a3247409e344fd156fdb6e29317

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 109KB - Virtual size: 109KB

.rdata Size: 512B - Virtual size: 240B

.bss Size: - Virtual size: 352B

.idata Size: 2KB - Virtual size: 2KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 109KB - Virtual size: 109KB

.rdata
Size: 512B - Virtual size: 240B

.bss
Size: - Virtual size: 352B

.idata
Size: 2KB - Virtual size: 2KB