960e8c2aac927eef345bbe0bad28e1b1_JaffaCakes118

General

Target

960e8c2aac927eef345bbe0bad28e1b1_JaffaCakes118
Size

56KB
MD5

960e8c2aac927eef345bbe0bad28e1b1
SHA1

df27fcc513ed7e1b37aed24fabec097412696d33
SHA256

cc8acc33463cb9e963dfb7c97fa50ce5f1483f4ddbe1c3feef97081bb041f6e5
SHA512

d5e5855e8385212cb1f5c6562d2d34434d38140e3c79556e66d19eedafe9615286803ead532ffe48403bb90af4f88020bbd737c679b700e915cee82133a171d0
SSDEEP

768:cixbG+uYmVM4ydYMhwo93tU5sP6J8aocwmP:Zxbz9mVMfSxo9u5sP6J8Ncw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
960e8c2aac927eef345bbe0bad28e1b1_JaffaCakes118

Files

960e8c2aac927eef345bbe0bad28e1b1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c10fc49d7976c7260d0d66ad3c727803

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
lstrcpyA
CreateFileMappingA
CloseHandle
OpenMutexA
LoadLibraryA
lstrcatA
ExitProcess
FreeLibrary
Sleep
GetProcAddress
UnmapViewOfFile
WinExec
GetSystemPowerStatus
GetStartupInfoA
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
LCMapStringW
GetStringTypeW
MultiByteToWideChar
LCMapStringA
VirtualAlloc
HeapAlloc
HeapReAlloc
GetModuleHandleA
lstrcmpA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
VirtualFree
HeapCreate
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
GetACP
GetOEMCP
HeapFree
RtlUnwind
WriteFile
GetCPInfo

user32

TranslateMessage
DispatchMessageA
GetMessageA
RegisterClassExA
FindWindowA
DefWindowProcA
KillTimer
wsprintfA
CreateWindowExA
SetTimer

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c10fc49d7976c7260d0d66ad3c727803

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 16KB - Virtual size: 14KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 32KB - Virtual size: 32KB

.text
Size: 16KB - Virtual size: 14KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 32KB - Virtual size: 32KB