a4bc1f95de9b3382c874009a93fc4d56_JaffaCakes118

General

Target

a4bc1f95de9b3382c874009a93fc4d56_JaffaCakes118
Size

30KB
MD5

a4bc1f95de9b3382c874009a93fc4d56
SHA1

87aa351c2b5ab123145d302164659c6dd7de2a88
SHA256

a62aef73ea33f8139be01b442ce9700aed890e02d1ea8bf75b7f26fd7c81862a
SHA512

5c80422b3d759316e62ae8a5377c9c922034331bf6cc5a01151062133c1291b796b687bb17f20bf1fc3af4e28866aaffe7c0c2a3e91ff1acd72d2eb6b0b4fe10
SSDEEP

384:GJqGiidRpS5TuWaXljrPSmYDDDPk9VGCOOVM4jh5EQKl+0PkfsmZ:GqVuW0ljrPryXnCOGnjh5Wkfsm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4bc1f95de9b3382c874009a93fc4d56_JaffaCakes118

Files

a4bc1f95de9b3382c874009a93fc4d56_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a1ac5d8c2af49acd28a971d0b92b4c4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
DeleteFileA
LoadLibraryA
HeapFree
GetProcessHeap
HeapAlloc
GetProcAddress
GetModuleHandleW
GetCurrentProcessId
GetModuleFileNameA
WaitForMultipleObjects
CloseHandle
GetSystemDirectoryA
GetFileAttributesA
lstrlenA
lstrcmpA
ExitThread
ResetEvent
CreateThread
WaitForSingleObject
SetEvent
CreateEventA
CreateMutexA
WriteFile
CreateProcessA
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
ReleaseMutex
lstrcpyA
CreateFileA
SizeofResource
LoadResource
FindResourceA

user32

CloseWindow
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageA
CreateWindowExA
DestroyWindow
wsprintfA
PeekMessageA

advapi32

RegSetValueExA
RegNotifyChangeKeyValue
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA
RegOpenKeyA
RegCreateKeyExA

ole32

OleInitialize
OleUninitialize

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 748B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a1ac5d8c2af49acd28a971d0b92b4c4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 748B

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 748B

.rsrc
Size: 18KB - Virtual size: 18KB