96695966cea44f721609b4565bc735a3_JaffaCakes118

General

Target

96695966cea44f721609b4565bc735a3_JaffaCakes118
Size

224KB
MD5

96695966cea44f721609b4565bc735a3
SHA1

29a3d79139bbebefd7ed1a27b864b3436cc7accb
SHA256

301302bc3a4b280a9236af3b803c9eca7b6d3ad2d49aa45ac296247a6e41c615
SHA512

a7d06df641118bb0adefa10018194aa126b204e8c074d7c94386700d65d96ecf8d5ba89968a25df41bfb52ca30ac9bfce5157f722d0666c19d439d26701468d0
SSDEEP

3072:sTD6WsbcfnPC08tsTtp9STt4bRLA2wHdnkSiqAToWWQSN:ueqnPCzK/Qx4m21zqcde

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96695966cea44f721609b4565bc735a3_JaffaCakes118

Files

96695966cea44f721609b4565bc735a3_JaffaCakes118
.exe windows:1 windows x86 arch:x86

7a767ac7d8643ba71275c0b36ca1098e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
CreateFileA
GetProcessAffinityMask
SetEndOfFile
CreateProcessA
LCMapStringW
GetVersionExA
GetModuleHandleA
CreateFileMappingA
ReadProcessMemory
GlobalLock
HeapAlloc
SetUnhandledExceptionFilter
GetTimeFormatA
MultiByteToWideChar
HeapCreate
DeviceIoControl
GlobalReAlloc
VirtualAlloc
GetNumberFormatA
FileTimeToLocalFileTime
GetStartupInfoA
InterlockedIncrement
FormatMessageA
InitializeCriticalSection
GetStdHandle
GetProcAddress
CreateEventW
GetFileAttributesA
InterlockedExchange
GetFileType
GlobalUnlock
GetCurrentProcessId
LeaveCriticalSection
GetModuleHandleW
WriteConsoleW
SetHandleCount
IsValidCodePage
lstrcmpiA

msvcrt

_fcloseall
_except_handler3
bsearch
_wutime
_setjmp
_wcstoi64
_XcptFilter
_initterm
_spawnvpe
_outpd
_controlfp
_vsnwprintf
_acmdln
qsort
getchar
_ismbcgraph
_ismbcalnum
__p__fmode
tan
_setsystime
__getmainargs
_getws
iswascii
mbstowcs
_adj_fdiv_m16i
_exit
_getdrive
memcmp
fgets
atan2
_fstati64
_mbcjistojms
_wcserror
_wtempnam
__set_app_type
_atodbl
_wexeclp
memcpy
_wfsopen
_chkesp
__p__commode
_mbsnextc
exit
_adjust_fdiv
__setusermatherr

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 208KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a767ac7d8643ba71275c0b36ca1098e

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 208KB - Virtual size: 208KB

.data Size: 512B - Virtual size: 120B

.rsrc Size: 512B - Virtual size: 132B

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 208KB - Virtual size: 208KB

.data
Size: 512B - Virtual size: 120B

.rsrc
Size: 512B - Virtual size: 132B