88021ee8532227b62959f7d01bf2da44_JaffaCakes118

General

Target

88021ee8532227b62959f7d01bf2da44_JaffaCakes118
Size

857KB
MD5

88021ee8532227b62959f7d01bf2da44
SHA1

4b237405f1088a113fad3951c830e8f9122e19f6
SHA256

90fbb27cf9d1276f0626a5a943e28c698179434c8f8316589957a516a672d5fe
SHA512

06a8fc0079cc2eab42cdf6c12b0ec38f4f074481f7ef7d98f841275076791346f3af6e9899bc5d2823dea51759f4e165034888afae6c78cf16edf1a0e6db488c
SSDEEP

24576:gWG+uxTIrCONCAx3E9ut0rM2EcvUpo2i7UK28+pg:X+ufNZ3E9lM9totMx2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88021ee8532227b62959f7d01bf2da44_JaffaCakes118

Files

88021ee8532227b62959f7d01bf2da44_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8c826bc85e110c9762701076ffe601d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetCommandLineA
GetCurrentThread
GetTickCount
GetModuleHandleA
ExitProcess
HeapAlloc
GetProcessHeap
LeaveCriticalSection
SetLastError
VirtualAlloc
CreateFileA
TlsSetValue
SetEndOfFile
FormatMessageA
Sleep
InterlockedDecrement
CreateProcessW
GlobalAlloc
CreateFileW
InitializeCriticalSection
WriteConsoleA
LCMapStringA
TerminateProcess
FormatMessageW
LocalFree
GetACP
lstrcpynA
GetSystemTimeAsFileTime
CompareStringA
SetUnhandledExceptionFilter
ReadFile
GetStringTypeA
MapViewOfFile
CreateThread
SetStdHandle
GetProcAddress
FreeEnvironmentStringsW
UnhandledExceptionFilter
IsDebuggerPresent
DeleteFileA
WriteConsoleW
GetLocaleInfoA
GetCurrentProcess
FreeEnvironmentStringsA
VirtualFree
lstrlenW
GetModuleFileNameA
FlushFileBuffers
GetVersionExA
HeapDestroy
QueryPerformanceCounter
GetModuleFileNameW
LoadLibraryA
LCMapStringW
EnterCriticalSection
GetStdHandle
HeapFree

Sections

.text
Size: 807KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c826bc85e110c9762701076ffe601d1

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 807KB - Virtual size: 1.1MB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 27KB - Virtual size: 26KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 807KB - Virtual size: 1.1MB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 18KB - Virtual size: 18KB