Static task
static1
General
-
Target
7ad3b74bec51678622e21f57fb82e136_JaffaCakes118
-
Size
258KB
-
MD5
7ad3b74bec51678622e21f57fb82e136
-
SHA1
8451a774e40be182504e4a82852af45074cfb16e
-
SHA256
578cc3d6721db808eded6cde770f75c3cfcadeab323fab5871f44b201ce0a894
-
SHA512
7c39a1601e878d718333029d0bc9899eb8ea514f4213fe5b7c3a095700b1f2c5febbbb11554e28db2b32d4dd419f9e4b108bbf6ce94b6cb609d6763f3e4413a5
-
SSDEEP
3072:svTLarPCjBbMiH1V5l2ETT4gVVljxJVBAIkRLcClVzYmhpIetmTl27uGCOuyokE:svTL2CWSVH2EYIiZLcszYmMNTlgMOuyG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7ad3b74bec51678622e21f57fb82e136_JaffaCakes118
Files
-
7ad3b74bec51678622e21f57fb82e136_JaffaCakes118.exe windows:4 windows x86 arch:x86
9e0751df0ee20429d89c1145a1b78fe6
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CloseHandle
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
SetConsoleCtrlHandler
FlushConsoleInputBuffer
SetConsoleMode
GetStdHandle
GetConsoleScreenBufferInfo
GetSystemDefaultLangID
CreateDirectoryA
SetConsoleTitleA
GetCurrentProcess
SetPriorityClass
GetModuleFileNameA
GetModuleHandleA
ExitProcess
EnterCriticalSection
LeaveCriticalSection
GetConsoleMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
GetLastError
GetFileType
SetEndOfFile
HeapFree
HeapAlloc
GetProcessHeap
FindClose
FindFirstFileA
FindNextFileA
HeapReAlloc
GetCommandLineA
GetVersionExA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
DeleteCriticalSection
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSection
SetHandleCount
GetStartupInfoA
Sleep
MultiByteToWideChar
ReadFile
WideCharToMultiByte
GetConsoleCP
SetStdHandle
SetFilePointer
FlushFileBuffers
RtlUnwind
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetTimeZoneInformation
RaiseException
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sections
.text Size: 128KB - Virtual size: 128KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 32KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdat Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE