a6205c0a5b01af4e41f9710c374fab65_JaffaCakes118

General

Target

a6205c0a5b01af4e41f9710c374fab65_JaffaCakes118
Size

25KB
MD5

a6205c0a5b01af4e41f9710c374fab65
SHA1

f032a19c57b25e1792f8dd961147376616d0c7aa
SHA256

c575cf90ecf24ba47a9463c29148f0097c5313c27d40bf1be21d8516b72f87ce
SHA512

03e537addbcef7374945d14d52c41d3694b4f937526c4db2e322f738b764a267f40a63ba0bcadb0a7ac9687942f672ef9c2eff3b350084c0d0f9b8666f412ea1
SSDEEP

768:4y969G5wI1iOm+4rf80do6L6iXTHJYdQId1Px:H69LI1iOmRrNBZYx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6205c0a5b01af4e41f9710c374fab65_JaffaCakes118

Files

a6205c0a5b01af4e41f9710c374fab65_JaffaCakes118
.exe windows:7625 windows x86 arch:x86

6d1e01dd66131431f949cbaaef0869b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
SetUnhandledExceptionFilter
Sleep
GetCommandLineW
HeapDestroy
GetModuleHandleW
HeapDestroy
VirtualAlloc
LoadLibraryW
GetModuleHandleA
InterlockedIncrement
SetLastError
HeapFree
GetCurrentThreadId
GetModuleHandleW
GetCurrentThreadId
VirtualAlloc
GetVersionExA
SetFilePointer
GetCurrentThreadId
LocalAlloc
GetProcessHeap
DeleteCriticalSection
ReadFile
lstrcmpiW
WaitForSingleObject
CreateFileW
CloseHandle
HeapAlloc
GetModuleFileNameA
VirtualAlloc
LocalAlloc
CloseHandle
lstrlenW
GetModuleHandleW
SetLastError
GetTickCount
ExitProcess
GetStartupInfoA
DeleteCriticalSection

user32

GetDesktopWindow
TranslateMessage
LoadIconW
MessageBoxA
UpdateWindow
LoadCursorW
RegisterClassW
MessageBeep
GetClientRect
TranslateMessage
LoadStringW
CheckDlgButton
GetKeyState
DispatchMessageA
CreateDialogParamW
GetParent
EndDialog
LoadCursorW
GetDlgItem
DefWindowProcW
TranslateMessage
SetTimer
CallWindowProcW
PtInRect
SendDlgItemMessageW
DestroyWindow
MoveWindow
GetDlgItem
CopyRect
LoadStringA
GetMenu
GetDesktopWindow
GetWindowRect
SendMessageW
LoadImageW
PostMessageW
PtInRect
SetRect
RegisterClassExW

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d1e01dd66131431f949cbaaef0869b1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 7KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 7KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB