8d26adf746077dc2b1163a9ba0f69056_JaffaCakes118

General

Target

8d26adf746077dc2b1163a9ba0f69056_JaffaCakes118
Size

108KB
MD5

8d26adf746077dc2b1163a9ba0f69056
SHA1

3d27db85b45818e310b93dd1c39e6d90bc6ea4a3
SHA256

11a2b2fcb642ed9bd1c17e2ab1ddaa1ce85010fd84ba118cbe16ac8bf98e7278
SHA512

2143a3ad2632ee83a9ee2515ac32cc60e1747d4cc3cbd85d411238f172627548ccc25be11750e3a64f37d0dd69964acab5946bd63b56d42ef9f6ede7ca2af041
SSDEEP

1536:xHWClxKi6YFs424uanQBL7lm6tF66OSb8bGN+b0uR6oSttF:xHWClxKi6YFs4UaGL7lPrhwbku6oSB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d26adf746077dc2b1163a9ba0f69056_JaffaCakes118

Files

8d26adf746077dc2b1163a9ba0f69056_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce31ae344aae2da55d76e63c820ed3b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
WideCharToMultiByte
CloseHandle
ReadFile
GetFileSize
CreateFileA
WriteFile
IsBadReadPtr
HeapValidate
OutputDebugStringA
LCMapStringW
LCMapStringA
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetFilePointer
VirtualAlloc
HeapReAlloc
HeapAlloc
GetStringTypeW
GetStringTypeA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
DebugBreak
GetStdHandle
InterlockedDecrement
SetConsoleCtrlHandler
GetProcAddress
Sleep
InterlockedIncrement
GetModuleFileNameA
IsBadWritePtr
GetEnvironmentStrings
MultiByteToWideChar
SetHandleCount
GetFileType
GetStartupInfoA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
HeapFree
VirtualFree
RtlUnwind
GetLastError

user32

wsprintfA

ws2_32

socket
recv
WSAStartup
inet_addr
gethostbyname
WSACleanup
ioctlsocket
setsockopt
htons
inet_ntoa
connect
closesocket
send

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce31ae344aae2da55d76e63c820ed3b8

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 12KB

.idata Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 12KB

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 3KB