aa8368f8a08ba5b480e1e07e599e04ef_JaffaCakes118

General

Target

aa8368f8a08ba5b480e1e07e599e04ef_JaffaCakes118
Size

572KB
MD5

aa8368f8a08ba5b480e1e07e599e04ef
SHA1

7b905c0d778560dc92c9aa806608440295b3108d
SHA256

b835622ca10cbd4e24004a2cb5fa7d7948883d67c8724f563e8cb7f73a8b6652
SHA512

15ae97826d1499591dd24f20132afeafba99dbc8020504a00fea7b5369e7f46fe9332bd3a8f8749c2c20a12cb27f4237fa86666879c5d00ccf4e456534afafd1
SSDEEP

12288:aSEUSohQkY4E1N1uPlu1DCA1bAAEtwVI8FTuyNQDnt:aSMnu90DCQbxDVusQDt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa8368f8a08ba5b480e1e07e599e04ef_JaffaCakes118

Files

aa8368f8a08ba5b480e1e07e599e04ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

afb633846ff216133b431f62a2165b29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
LocalAlloc
GetDiskFreeSpaceExA
QueryDosDeviceW
GetTapeParameters
SetMailslotInfo
SetupComm
CopyFileExW
CreateWaitableTimerA
GetNumberFormatW
ScrollConsoleScreenBufferA
VirtualQueryEx
GetLongPathNameA
FindResourceExW
EnumResourceNamesW
GetFileInformationByHandle
ReleaseMutex
LCMapStringA
LoadLibraryExA
GetShortPathNameW
ClearCommBreak
GetProcessHeap
ReadConsoleOutputA
EnumSystemCodePagesA
LocalFileTimeToFileTime
CreateMutexA
CloseHandle
GetCompressedFileSizeW
DosDateTimeToFileTime
CompareStringA
ExitProcess

user32

GetMenuInfo
SendNotifyMessageA
GetDoubleClickTime
CharPrevW
GetUserObjectInformationA

comctl32

ImageList_GetIcon

advapi32

SetPrivateObjectSecurity
RegLoadKeyW
SetFileSecurityA
InitializeAcl
RegEnumValueA
RegRestoreKeyW

gdi32

GetCharacterPlacementA
GetEnhMetaFilePaletteEntries
SetPixel
Pie
EnumFontFamiliesExW
SetSystemPaletteUse
GetBkColor
CloseMetaFile
SetTextAlign
CreatePen

shell32

SHGetSpecialFolderPathW
ExtractIconExW

ws2_32

WSAAccept
WSASetLastError
WSAInstallServiceClassW
WSAEnumNameSpaceProvidersA
sendto

Sections

.text
Size: 2KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afb633846ff216133b431f62a2165b29

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

gdi32

shell32

ws2_32

Sections

.text Size: 2KB - Virtual size: 250KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 256KB - Virtual size: 256KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 250KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 256KB - Virtual size: 256KB

.rsrc
Size: 16KB - Virtual size: 16KB