83f926c60fff8ca781630f035c8aafc5_JaffaCakes118

General

Target

83f926c60fff8ca781630f035c8aafc5_JaffaCakes118
Size

3.4MB
MD5

83f926c60fff8ca781630f035c8aafc5
SHA1

dd30af192f6a64f5bcd24e5faea3857e6a929232
SHA256

0226f6e26713a2055043cbabef63d64780d00dff0a634b267e93aaa7b66dd6ca
SHA512

052fc89ec7e48a271dfd9ea261c2afa6f8c40e99926870a440b1189e8fd9774c27de90dd3bb1893196443cd618547638771f945cd6b8251ef35d350f571d3afd
SSDEEP

49152:EB23ZR8g7pZfldBvC1BseaXA6zV6nJYigSUblXe0EAnrhsJJ9Seycd40TJwIM1M4:dmseaZiKJSUFe0thsJ3Sv2W81

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83f926c60fff8ca781630f035c8aafc5_JaffaCakes118

Files

83f926c60fff8ca781630f035c8aafc5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a1d0a8392a06e48f6bb05a147bc47821

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
CloseHandle
UnhandledExceptionFilter
Sleep
GetTickCount
FreeLibrary
HeapAlloc
LocalFree
WaitForSingleObject
GetProcessHeap
CreateFileW
ExitProcess
GetStdHandle
GetStartupInfoW
IsDebuggerPresent
GetCommandLineW
FindClose
ReadFile
RaiseException
SetEvent
TlsGetValue
FlushFileBuffers
TlsSetValue
HeapSize
CreateThread
GetCPInfo
SetFilePointer
GetStringTypeW
LCMapStringW
SetStdHandle
FindNextFileW
IsValidCodePage
FindFirstFileW
DeleteFileW
VirtualAlloc
LocalAlloc
GetCommandLineA
DecodePointer
SetEndOfFile
ReleaseMutex
CreateFileA
OutputDebugStringW
EncodePointer
VirtualFree
GetLocaleInfoW
GetFullPathNameW
GetExitCodeProcess
ExpandEnvironmentStringsW

user32

TranslateMessage
LoadStringW
DestroyWindow
ReleaseDC
PostQuitMessage
SetWindowLongW
GetDC
PostMessageW
IsWindow
EndDialog
SetFocus
GetSysColor
PeekMessageW
EndPaint
BeginPaint
ScreenToClient
SetCursor
KillTimer
InvalidateRect
RegisterClassW
GetWindow
GetWindowTextW
UpdateWindow
SystemParametersInfoW
GetKeyState
MessageBoxA
ClientToScreen

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 612KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1d0a8392a06e48f6bb05a147bc47821

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: - Virtual size: 612KB

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: 3.4MB - Virtual size: 3.4MB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: - Virtual size: 612KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3.4MB - Virtual size: 3.4MB