b98808507223ea17bb17dc0312ded2ec_JaffaCakes118

General

Target

b98808507223ea17bb17dc0312ded2ec_JaffaCakes118
Size

288KB
MD5

b98808507223ea17bb17dc0312ded2ec
SHA1

a5dce724515603b7f23dab4f8da9d04cf23201da
SHA256

4a8fdcaa05a20d05cd7b0eecab8bf924bdd128d53d5fc0c854986f11f64c0f8d
SHA512

67b94be9a779cc0447f0c61f869b6b2cd998a7d5931b6e81fda885703d97a4fe37bbbc457476337b6a86e86aa06913e5e0f10aa2992a76394dbe26309d4dccd3
SSDEEP

3072:Ky4g+1A6iaL/xH7g7bihWHN6oIqmgz0eF8LvChyrfPN85PXKmNnFYYe7gdVKg7kg:KyEmML/xVhimgzgmhy52pFf7xcn2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b98808507223ea17bb17dc0312ded2ec_JaffaCakes118

Files

b98808507223ea17bb17dc0312ded2ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0334cd6b5c5030c85c02664e465bfc7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
GetCommandLineA
GetVersion
HeapReAlloc
HeapAlloc
HeapFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetLastError
CloseHandle
WriteFile
GetProcAddress
GetModuleHandleA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetFilePointer
FindNextFileA
FindFirstFileA
FindClose
GetCPInfo
GetACP
GetOEMCP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
ReadFile
VirtualAlloc
CompareStringA
CompareStringW
RaiseException
FlushFileBuffers
SetStdHandle
CreateFileA
LCMapStringA
LCMapStringW
LoadLibraryA
SetEndOfFile

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0334cd6b5c5030c85c02664e465bfc7b

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 96KB - Virtual size: 92KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 1KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 96KB - Virtual size: 92KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 1KB

.text
Size: 168KB - Virtual size: 168KB