75ca0bd535fe1bd1aa987261a1cec108_JaffaCakes118

General

Target

75ca0bd535fe1bd1aa987261a1cec108_JaffaCakes118
Size

508KB
MD5

75ca0bd535fe1bd1aa987261a1cec108
SHA1

57a84dfc83d21bd696d27b3d4b74e20cd6c5f54c
SHA256

90bb360ca141ad35203bb8c18ad1de2001abea9f08604bd7278d7c38474e6149
SHA512

ef3f1eaf46cf06afb5ed6896c24dcc3583ba99a526e6a93f4366d8a473a6b88b453896e0d96952e1722da8398e6e12a60e3ebaeceb694560a0c98388e74af5d5
SSDEEP

12288:YG3JCCHGbKSI+SE4/1mQaPbzJaxy8gieIs6fduXeJgiB:YG9meb+R4N9Kb356Rgg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75ca0bd535fe1bd1aa987261a1cec108_JaffaCakes118

Files

75ca0bd535fe1bd1aa987261a1cec108_JaffaCakes118
.exe windows:4 windows x86 arch:x86

133c6a428d322f59efedd5254466abdd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowPos
MessageBoxA
SetWindowLongA
GetSystemMetrics

kernel32

HeapCreate
LeaveCriticalSection
VirtualAlloc
InterlockedIncrement
GetTickCount
TlsGetValue
GlobalAlloc
LoadResource
InitializeCriticalSection
CreateProcessA
FreeLibrary
GetModuleHandleW
HeapReAlloc
GetACP
GetSystemTimeAsFileTime
ReadFile
FindFirstFileA
GetStartupInfoA
WriteFile
FindNextFileW
GetModuleHandleA
WideCharToMultiByte
RaiseException
GetCurrentThread
GetCommandLineA
MultiByteToWideChar
GetCPInfo
GetCommandLineW
LockResource
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
FlushFileBuffers
GetEnvironmentStringsW
GetVersionExA
TlsAlloc
GetThreadLocale
ExitProcess
IsDebuggerPresent
GetOEMCP
GetStdHandle
HeapFree
HeapAlloc
GetProcessHeap
GetVersion
GetProcAddress
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
GetFileType
GetCurrentThreadId
TlsSetValue
SetLastError
GetLastError
GetEnvironmentVariableA
HeapDestroy
VirtualFree
RtlUnwind
InterlockedDecrement
EnterCriticalSection
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 468KB - Virtual size: 467KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

133c6a428d322f59efedd5254466abdd

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 468KB - Virtual size: 467KB

.rsrc Size: 4KB - Virtual size: 760B

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 468KB - Virtual size: 467KB

.rsrc
Size: 4KB - Virtual size: 760B