77650351afacc1109f2c86ae6e9081c3_JaffaCakes118

General

Target

77650351afacc1109f2c86ae6e9081c3_JaffaCakes118
Size

158KB
MD5

77650351afacc1109f2c86ae6e9081c3
SHA1

55ac01c9125f6ec005725d57226476a4e3b0265b
SHA256

1b8e7ad74d5ff2e46a1b4f1535f11179e01b326fb3e19ddac23d4398d4b3bfc6
SHA512

2dbf1465242a73626d99fbc520e8945a17efc0f278a26d3df7d7a0112693061040277d1177fe24917613db9cfc7684caeb520e653d4617b34c422b64ff596120
SSDEEP

3072:/TxMCrX2vGdrCeAVuix/Q8i2LcwCNVAZKwm0iMhyBv:/dM9vGd2z/TLcwsHrMc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77650351afacc1109f2c86ae6e9081c3_JaffaCakes118

Files

77650351afacc1109f2c86ae6e9081c3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59dc49f55063f697b37cc3016983fc8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance

kernel32

FreeEnvironmentStringsW
SetLastError
GetLastError
InterlockedIncrement
IsDebuggerPresent
GetEnvironmentStringsW
GetStringTypeA
SetHandleCount
LCMapStringW
GetModuleHandleA
GetVersion
WideCharToMultiByte
TlsGetValue
InterlockedDecrement
UnhandledExceptionFilter
GetCPInfo
RtlUnwind
IsBadCodePtr
ExitProcess
GetStringTypeW
GetCurrentThreadId
GetFileType
LeaveCriticalSection
IsBadWritePtr
HeapCreate
LoadLibraryA
GetStdHandle
WriteFile
GetModuleFileNameA
HeapReAlloc
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
GetProcAddress
InitializeCriticalSection
LCMapStringA
GetStartupInfoW
TlsFree
VirtualFree
HeapFree
GetCommandLineA
GetEnvironmentStrings
GetACP
HeapDestroy
HeapAlloc
TlsSetValue
GetOEMCP
DeleteCriticalSection
IsBadReadPtr
GetStartupInfoA
TlsAlloc
EnterCriticalSection
VirtualAlloc
GetCurrentProcess
TerminateProcess
MultiByteToWideChar
Sleep

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59dc49f55063f697b37cc3016983fc8c

Headers

File Characteristics

Imports

ole32

kernel32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 61KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 96KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 61KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 96KB