bbde211808b7af69501a35bddf1a506f_JaffaCakes118

General

Target

bbde211808b7af69501a35bddf1a506f_JaffaCakes118
Size

232KB
MD5

bbde211808b7af69501a35bddf1a506f
SHA1

9b23aab341f6e795dbbfabdd8cdfbfacf06bed8e
SHA256

c36e35f263e0b55b012b00fd314038440917930a210b11fac6968886a491b7d2
SHA512

2be86834d26c93225cff8c85cce579b84e848a6e2f2d4be12ff2a6d5ec9096d47abe1785d98a44ab5aafe3b0d041b0487c873f5259ccbf82b5b539039f5243d7
SSDEEP

3072:W5e3kFBCAcYUrGdP9JjDp3mAoRN+pz5DG6v3enTyjXXQkGy28w5EKyWxqjgY7C:fINNP9JXBMCV5DZe9PR5RyW0l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bbde211808b7af69501a35bddf1a506f_JaffaCakes118

Files

bbde211808b7af69501a35bddf1a506f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc8db0f94a7a651fe7f04aa34de60cea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetCommandLineA
FormatMessageA
GlobalFindAtomA
WaitForSingleObject
VirtualAlloc
GetStringTypeA
GetCPInfo
lstrcatA
SetLastError
GetTickCount
LoadLibraryA
RaiseException
LocalAlloc
GetModuleHandleW
GetStdHandle
GlobalDeleteAtom
FindClose
LoadResource
GetThreadLocale
FindFirstFileA
HeapAlloc
GetUserDefaultLCID
lstrcpynA
DeleteCriticalSection
GetProcAddress
GetModuleHandleA
LockResource
SetEndOfFile
SetErrorMode
ExitProcess
FreeResource
HeapDestroy
SetThreadLocale
GetCommandLineW
SizeofResource
GetCurrentThreadId
IsBadReadPtr
GetOEMCP
Sleep
GetCurrentProcess
GetVersion
VirtualQuery
GetLastError
ReadFile
CreateFileA
HeapFree
WriteFile
GetACP
LoadLibraryExA
ExitThread
LocalFree

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 395B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.adata
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc8db0f94a7a651fe7f04aa34de60cea

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 395B

BSS Size: 4KB - Virtual size: 36KB

.adata Size: 132KB - Virtual size: 131KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 395B

BSS
Size: 4KB - Virtual size: 36KB

.adata
Size: 132KB - Virtual size: 131KB

.rsrc
Size: 8KB - Virtual size: 7KB