b4832c761ca311f97e48ba349932511f_JaffaCakes118

General

Target

b4832c761ca311f97e48ba349932511f_JaffaCakes118
Size

30KB
MD5

b4832c761ca311f97e48ba349932511f
SHA1

12129d35618829a9fb29c11dabc97d1f0ebeb485
SHA256

181a0e874bf59d2468bbc22324e2738f4f10dc2c3c1e6748eadabf1b76fdf63a
SHA512

834aff38947213ed33913199cd27896795991f66bc5e0582cf5046194e98f82c8726ec72f1fc380757ff17ffcd35dae8c5388dcde8f2ae62d4435fdff382bd07
SSDEEP

768:JeCD+37lV/0PIoJ3sBq3XTHJYdQId1jb:rD+3hNJi37eb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4832c761ca311f97e48ba349932511f_JaffaCakes118

Files

b4832c761ca311f97e48ba349932511f_JaffaCakes118
.exe windows:40170 windows x86 arch:x86

d4ef79361ffe1b081eb0ba5ec886646e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
HeapFree
GetSystemTimeAsFileTime
HeapFree
VirtualFree
SetLastError
VirtualAlloc
WaitForSingleObject
HeapDestroy
TerminateProcess
HeapReAlloc
EnterCriticalSection
GetACP
lstrlenW
DeleteCriticalSection
GetStartupInfoA
LocalFree
ExitProcess
lstrcmpiW
GetCommandLineW
FreeLibrary
GetCommandLineW
InitializeCriticalSection
InterlockedIncrement
GetCommandLineW

user32

SendMessageW
SetWindowTextW
CreateWindowExW
DialogBoxParamW
DispatchMessageW
SendMessageW
MapWindowPoints
LoadStringW
LoadStringA
GetFocus
LoadStringA
PtInRect
RegisterClassW
GetSystemMenu
LoadStringA
SetDlgItemTextW
DefWindowProcW
SetTimer
GetParent
GetKeyState
PostQuitMessage
EndDialog
SetWindowLongW
OffsetRect
UpdateWindow
SystemParametersInfoW
GetCursorPos
LoadStringA
SetCursor
RegisterClassW
GetDlgItemTextW
GetSubMenu
GetSubMenu
DestroyIcon
LoadStringW
SetCursor
DispatchMessageW
GetDC
SetCursor
GetWindowLongW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d4ef79361ffe1b081eb0ba5ec886646e

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB