bba24a19f0712ccedd82c94a34b75639_JaffaCakes118

General

Target

bba24a19f0712ccedd82c94a34b75639_JaffaCakes118
Size

338KB
MD5

bba24a19f0712ccedd82c94a34b75639
SHA1

f0ae0e16367c7c44533241d0d4b71e86cfdce2db
SHA256

ec03945cbbba48cef50b4860780b03fac3e6502d7abbce3446246a328086cddc
SHA512

a7f2b6f7847e65e5da640f042107756aa9283eb593d3d784bb7e416b8a554c7e4e2015c117ec26fc5100db75aec7897bf7419c64a0810ceec91c0bae8225d637
SSDEEP

6144:L516mt5G+LO7azX2XMdGEA1H7uEVvQ3itZmBAHt49f0:L5omrGcXqJdp7ZVvQ3i3aV0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bba24a19f0712ccedd82c94a34b75639_JaffaCakes118

Files

bba24a19f0712ccedd82c94a34b75639_JaffaCakes118
.exe windows:4 windows x86 arch:x86

964d9ce7d1bda6a576ecf71ed0dc136c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
ShowWindow
PostQuitMessage
GetMessageA
EndPaint
DispatchMessageA
BeginPaint
TranslateMessage
CreateWindowExA
RegisterClassExA
DefWindowProcA
SendMessageA
SetWindowTextA

kernel32

ExitProcess
CreateFileA
HeapAlloc
GetProcAddress
GetLastError
LoadLibraryA
GetModuleHandleA
GetCommandLineA
FindFirstFileA
FindClose
HeapCreate
GetEnvironmentStrings
GetVersion
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
SetHandleCount
GetVersionExA
GetEnvironmentVariableA
HeapDestroy
WriteFile
VirtualFree
HeapReAlloc
VirtualAlloc
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
RtlUnwind
GetACP
GetCPInfo
GetModuleFileNameA
GetStdHandle
GetOEMCP
GetFileType
MapViewOfFile
UnmapViewOfFile
HeapFree
GetCurrentProcess
CloseHandle
FindNextFileA
GetFileSize

gdi32

ExtTextOutA

Sections

.text
Size: 302KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

964d9ce7d1bda6a576ecf71ed0dc136c

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 302KB - Virtual size: 302KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 10KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 432B

.text
Size: 302KB - Virtual size: 302KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 432B