87850aa57ff70dbf9daeaadd4bba7277_JaffaCakes118

General

Target

87850aa57ff70dbf9daeaadd4bba7277_JaffaCakes118
Size

66KB
MD5

87850aa57ff70dbf9daeaadd4bba7277
SHA1

77300ddc63a2e9072523ffef2a2280dad28e0634
SHA256

3dc4d2a1a29abf28a5cc1de8a19b3b39150af4621f559823dec217be6d445117
SHA512

ac463274f7cf5113af98161f7e9d6cc1a22ba51fb407e00944433e2a2655d99dfc1891fd0da4e4091c768e210b5abb2df47eb1c13f0c6dc066ae4ba8cdaf55d6
SSDEEP

768:IcJEqBCm1HcfHCAkW4wzkkQbDlSJlwvjBovwPfcOYjyWqkwOy03/DbND:B5Cm1OYwokQbDlSYrBoIPfLYjdpt/N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87850aa57ff70dbf9daeaadd4bba7277_JaffaCakes118

Files

87850aa57ff70dbf9daeaadd4bba7277_JaffaCakes118
.exe windows:1 windows x86 arch:x86

bf2d12ce36d3d3efb4ff3641f70936ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
FindResourceA
GetCurrentProcess
GetSystemDirectoryW
QueryPerformanceCounter
TerminateThread
GetLocaleInfoA
CreateFileMappingA
GetStdHandle
IsValidCodePage
SetProcessWorkingSetSize
MultiByteToWideChar
VirtualQueryEx
InitializeCriticalSection
HeapAlloc
GetProcessAffinityMask
SizeofResource
LocalFree
GetModuleHandleA
GetStartupInfoA
GetCurrentDirectoryW
GetLastError
TlsAlloc
GetProcessHeap
GetStringTypeW
GetEnvironmentStringsW
HeapCreate

msvcrt

_heapset
_mbscspn
_mbctoupper
_adjust_fdiv
_controlfp
_wspawnle
gmtime
__getmainargs
_exit
_except_handler3
_wexecle
fgetc
__setusermatherr
__set_app_type
__p__commode
_ismbcprint
__p__fmode
_ismbckata
_XcptFilter
_wgetdcwd
_getmbcp
strcpy
memcpy
fputs
isleadbyte
_acmdln
ldiv
rewind
iscntrl
_wfsopen
remove
_initterm
exit
perror
iswctype

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf2d12ce36d3d3efb4ff3641f70936ea

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 61KB - Virtual size: 60KB

.data Size: 512B - Virtual size: 60KB

.rsrc Size: 512B - Virtual size: 4B

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 61KB - Virtual size: 60KB

.data
Size: 512B - Virtual size: 60KB

.rsrc
Size: 512B - Virtual size: 4B