aeddab420dcaa8a205f45d77ac775004_JaffaCakes118

General

Target

aeddab420dcaa8a205f45d77ac775004_JaffaCakes118
Size

26KB
MD5

aeddab420dcaa8a205f45d77ac775004
SHA1

cbaecec48cf999f65ee995f789c1c5b3a8ef7452
SHA256

1f3e0b1e853b86ff9d6e6770d543917360681208f9a15d9b8eee740eaed6c4d3
SHA512

232adcaf8f6a043c595a9ebb355dbd1c36cfb28fc8af7d7a246e92e9dbf84e21148121adbf1e97b126d280964d987b812b3aca433d4995e35301be1836124011
SSDEEP

768:Wmf9/02zpmFGlYqzHCkBmrrXTHJYdQId1H:WoZ0gpXi4HNBi+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeddab420dcaa8a205f45d77ac775004_JaffaCakes118

Files

aeddab420dcaa8a205f45d77ac775004_JaffaCakes118
.exe windows:39855 windows x86 arch:x86

01499a286a20dafd419f39a2da7d3e3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
TerminateProcess
SetLastError
SetEvent
LoadLibraryW
LeaveCriticalSection
EnterCriticalSection
GetACP
ExitProcess
SetFilePointer
LoadLibraryW
UnhandledExceptionFilter
VirtualFree
GetSystemTimeAsFileTime
ExitProcess
lstrcmpiW
VirtualAlloc
CloseHandle
GetModuleFileNameA
GetSystemTimeAsFileTime
LoadLibraryA
SetFilePointer
SetFilePointer
VirtualAlloc
CreateThread
QueryPerformanceCounter
GetCommandLineA
WideCharToMultiByte
LoadLibraryA

user32

LoadIconW
MessageBoxW
WinHelpW
LoadImageW
GetWindowLongW
GetDC
SystemParametersInfoW
SendMessageW
CharNextW
LoadStringW
GetWindow
GetDesktopWindow
SetDlgItemTextW
FindWindowW
FindWindowW
SetForegroundWindow
DialogBoxParamW
SetForegroundWindow
GetKeyState
GetSystemMenu
GetSystemMenu
GetClientRect
EnableWindow
CharNextW
EnableMenuItem
SetFocus
EndDialog
IsWindowVisible
DefWindowProcW
GetWindow
MessageBoxA
GetClientRect
GetMenu
DestroyMenu
LoadStringW
MoveWindow
DestroyIcon
MoveWindow
GetClientRect
BeginPaint
LoadCursorW
SetCursor
GetCursorPos
DefWindowProcW
GetWindowRect
SetRect

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01499a286a20dafd419f39a2da7d3e3c

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB