b87684de2466c300873bbe36af691647_JaffaCakes118

General

Target

b87684de2466c300873bbe36af691647_JaffaCakes118
Size

276KB
MD5

b87684de2466c300873bbe36af691647
SHA1

2336a733db00cae9eb2c57f887672f70cbd8ccc2
SHA256

362c4ed2b1b5566dcb367d152520b0dc8f2892cf26a647a60da4b7315ef5c04e
SHA512

393ecc4b169b761310a15ab82dbfb9a5e0dd86ecb93bb6bd2f64882d62e12ca3ce018a7b9f054878a627acd6257aee11fe36851f688322f3b928679a7cff3329
SSDEEP

3072:s4r2qUlfIUuJsQK4HJH/8PWyMfn//CMYhPLFp3DVeUE2B4YL31hfDLx7wHw7fiU9:FqBlfEaQTm8nVQPL9LEWDpUQ732e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b87684de2466c300873bbe36af691647_JaffaCakes118

Files

b87684de2466c300873bbe36af691647_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be6f6a293e73ffb0f7683aa9cc57f442

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
EnterCriticalSection
ExitThread
FindNextFileA
FreeLibrary
GetComputerNameA
GetFileAttributesA
GetFileSize
GetProcessHeap
GetSystemDefaultLCID
GetThreadPriority
GetTickCount
GlobalAlloc
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
OpenEventA
SetEvent
SetFilePointer
Sleep
WaitForSingleObject
WriteConsoleA
lstrcpyA
lstrlenA

user32

AdjustWindowRectEx
DispatchMessageW
DrawFocusRect
EnableWindow
EndDialog
EndPaint
FindWindowW
GetClassInfoExW
GetLastActivePopup
GetMessagePos
GetWindowLongA
IsDlgButtonChecked
LoadImageW
MoveWindow
PostMessageW
SendMessageCallbackW
SendNotifyMessageW
SetRectEmpty
TrackPopupMenu
TranslateAcceleratorW
UnregisterHotKey

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 261KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be6f6a293e73ffb0f7683aa9cc57f442

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 261KB - Virtual size: 263KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 261KB - Virtual size: 263KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB