a2ecd5e13a65509fceea297a4702c055_JaffaCakes118

General

Target

a2ecd5e13a65509fceea297a4702c055_JaffaCakes118
Size

388KB
MD5

a2ecd5e13a65509fceea297a4702c055
SHA1

22b775f731efee9cbd7862365fb0afe34effb460
SHA256

d89d260579345d669d8fe9722e6dad53c29cfef6d69d94a75fb012525bbbc41f
SHA512

3fa5790dcb596cd71e6c2781838ef4d41bdff06d40c3b5ac12160ed162d6cbcbcec5d08b61a88e481999e09267354e04b36ef3b5f001e8819808e602b43b965a
SSDEEP

6144:vZ+BdQwRIsi/uyorgucAwN4jrSlmcNFgzpUEvn2S7pHLzikNAfM8W1NMBX0DtPEi:kBdJPyu+xe3w6UXSV/NAQ1NMJGPT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2ecd5e13a65509fceea297a4702c055_JaffaCakes118

Files

a2ecd5e13a65509fceea297a4702c055_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6588c781e5a0883fcfd08db961e480cc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
ExitProcess
SetEndOfFile
FormatMessageA
InterlockedDecrement
FindClose
HeapCreate
InitializeCriticalSection
WriteConsoleA
LocalFree
GetOEMCP
SetEnvironmentVariableA
HeapReAlloc
GetACP
MulDiv
GetCurrentProcess
SetFilePointer
GetStringTypeA
LoadLibraryW
WideCharToMultiByte
CompareStringA
GetModuleHandleA
MapViewOfFile
TlsFree
CloseHandle
GetCommandLineA
FreeEnvironmentStringsW
MultiByteToWideChar
TlsGetValue
GetConsoleMode
GetStartupInfoA
GetLocalTime
GetModuleFileNameA
GlobalUnlock
GetEnvironmentStringsW
GetVersionExA
TlsAlloc
HeapAlloc
QueryPerformanceCounter
SetEvent
WaitForSingleObject
lstrcmpiA
lstrlenA
LeaveCriticalSection
ReleaseMutex
LCMapStringW
HeapFree
GetLastError
GetCurrentProcessId
GetTickCount
GetVersion
GetCurrentThread
GetProcessHeap
GetProcAddress
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
SetHandleCount
GetStdHandle
GetFileType
TlsSetValue
GetEnvironmentVariableA
HeapDestroy
VirtualFree
RtlUnwind
WriteFile
EnterCriticalSection
GetCPInfo
VirtualAlloc
LoadLibraryA
GetStringTypeW
LCMapStringA
SetLastError
UnmapViewOfFile
InterlockedIncrement

advapi32

RegCloseKey
RegQueryValueExA

user32

SetTimer
DefWindowProcA
GetDlgItem
GetSysColor
SetWindowLongA
InvalidateRect
FillRect

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 356KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6588c781e5a0883fcfd08db961e480cc

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 28KB - Virtual size: 25KB

.data Size: 356KB - Virtual size: 353KB

.text
Size: 28KB - Virtual size: 25KB

.data
Size: 356KB - Virtual size: 353KB