881d910b52d6567dd6b4519a26d70178_JaffaCakes118

General

Target

881d910b52d6567dd6b4519a26d70178_JaffaCakes118
Size

755KB
MD5

881d910b52d6567dd6b4519a26d70178
SHA1

73a1b6a35077289a31488f8c516202a13ce8f928
SHA256

054e28afe2054f92f1188bdd189e9a07cb025676ec2d50c94c39b91d2667091c
SHA512

9c7a6e0c3f8a15dc46c6d11ded57a1c49f749246b0fc31ed101d992010b5624812e99d88774b95c86515752752476596dc4df24d2bc3e39c975654a3dcc84e08
SSDEEP

12288:MZca0sx5L62DnoG/OzisIOG5UTdqqsZbspwpwctOVPWUtUcNMTIEuj9bydpvpPlA:M6XsFnoGXsIONCypzcUuUJE+9Ovvpa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
881d910b52d6567dd6b4519a26d70178_JaffaCakes118

Files

881d910b52d6567dd6b4519a26d70178_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ae2076c6a92c0cc35408948420d6a894

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetModuleFileNameW
CreateFileW
HeapDestroy
DisableThreadLibraryCalls
GetModuleFileNameA
CreateThread
GetModuleFileNameA
MultiByteToWideChar
GetModuleHandleA
LoadLibraryW
LoadLibraryW
EnterCriticalSection
DisableThreadLibraryCalls
GetModuleHandleA
FreeLibrary
QueryPerformanceCounter
LeaveCriticalSection
CloseHandle
SetLastError
GetCurrentThreadId
ReadFile
GetTickCount
GetCurrentProcess
DeleteCriticalSection
FreeLibrary
HeapAlloc
CloseHandle
lstrlenA
CreateEventW
CreateEventW
CloseHandle
GetCurrentThreadId
LocalFree
GetModuleHandleA
HeapAlloc
FreeLibrary
CreateFileW
GetModuleFileNameA
ReadFile
LoadLibraryA
DeleteCriticalSection
CreateFileW
MultiByteToWideChar
LocalAlloc
UnhandledExceptionFilter
GetModuleHandleA
CloseHandle
GetTickCount
FreeLibrary

user32

SetWindowPos
SetCursor
GetDC
SendDlgItemMessageW
SendMessageW
DestroyWindow
GetDesktopWindow
SetCursor
IsDlgButtonChecked
IsDlgButtonChecked
PostQuitMessage
SetWindowLongW
SendDlgItemMessageW
CharNextW
ShowWindow
EnableWindow
ReleaseDC
DestroyWindow
KillTimer
EndDialog
LoadIconW
TranslateMessage
GetParent
EndPaint
EndDialog
SendMessageW
GetDlgItem
GetSysColor
ReleaseDC
PeekMessageW
SetFocus
GetSysColor
SendMessageW
DefWindowProcW
SendDlgItemMessageW
PeekMessageW
PeekMessageW
GetSystemMetrics
SetCursor
GetDC
TranslateMessage
IsWindow
GetSystemMetrics
LoadStringW
IsDlgButtonChecked
DefWindowProcW
GetWindowRect
CharNextW
ShowWindow
TranslateMessage

Sections

.text
Size: 750KB - Virtual size: 1.4MB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae2076c6a92c0cc35408948420d6a894

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 750KB - Virtual size: 1.4MB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 750KB - Virtual size: 1.4MB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB