88ac00c468ff9d1167f45b24bfb9e896_JaffaCakes118

General

Target

88ac00c468ff9d1167f45b24bfb9e896_JaffaCakes118
Size

285KB
MD5

88ac00c468ff9d1167f45b24bfb9e896
SHA1

e36eda7efdfe374f1320dc132aff0efb8ad779ff
SHA256

3a43589929c0f4d2966f1ca1a2324367e83e5b1f6e64344a91cc802bb24cdec2
SHA512

73c0f5e887f78bcae4b60fce7113f1924cb2efcfc14415af276bc8e653cc9ab8f43df57666bb59d46d718357b725a99cf73ca6ac1cb93e732334f9084eba28b1
SSDEEP

6144:CAAenY1kBJ8xaKfLBpdnf/2eL1TCqV4lQJ3rhZ:p79qfVpdFlAC1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88ac00c468ff9d1167f45b24bfb9e896_JaffaCakes118

Files

88ac00c468ff9d1167f45b24bfb9e896_JaffaCakes118
.exe windows:4 windows x86 arch:x86

03408171a9119dd046a7c43868fbb751

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetOEMCP
FlushInstructionCache
GetComputerNameW
InterlockedExchange
GlobalFindAtomA
GetCurrentProcess
lstrlenW
RaiseException
HeapSetInformation
SetUnhandledExceptionFilter
lstrcmpW
GlobalHandle
GlobalFree
SetLastError
GlobalLock
CreateFileW
lstrlenA
InterlockedIncrement
LeaveCriticalSection
TlsGetValue
EnumResourceNamesA
FormatMessageW
WaitForSingleObject
MulDiv
LocalAlloc
InterlockedDecrement
GetTickCount
InitializeCriticalSection
EnterCriticalSection
GetCurrentThreadId
GetLocaleInfoW
CloseHandle
MultiByteToWideChar
GetStringTypeW
SetLastError
GlobalAlloc
TlsFree
DeleteCriticalSection
GlobalUnlock
TlsAlloc
TlsSetValue
WideCharToMultiByte

shlwapi

SHGetInverseCMAP
PathIsFileSpecA
PathAppendA
SHCreateStreamOnFileEx
PathIsContentTypeA
PathCreateFromUrlW

rpcrt4

RpcStringFreeA

Sections

.text
Size: 139KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03408171a9119dd046a7c43868fbb751

Headers

File Characteristics

Imports

kernel32

shlwapi

rpcrt4

Sections

.text Size: 139KB - Virtual size: 275KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 142KB - Virtual size: 142KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 139KB - Virtual size: 275KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 142KB - Virtual size: 142KB

.rsrc
Size: 512B - Virtual size: 4KB