bf6f4d59ddfd2c9cc152e26507eca0fc_JaffaCakes118

General

Target

bf6f4d59ddfd2c9cc152e26507eca0fc_JaffaCakes118
Size

508KB
MD5

bf6f4d59ddfd2c9cc152e26507eca0fc
SHA1

d328bd43e63384dd519d369df382a9dbf24d9bb6
SHA256

978e0a8401aa1d003d02bfc2bb7aa062ede8a1afe60581444439be5846d44beb
SHA512

a9979ddeda7d5dc16a2f3b86fed122597418906c33af469d85595aed482db0e75ae149c1f52e85848399133f48651a35be13e78b68f37549cb996a8b90045240
SSDEEP

12288:7jVdFUKW+R+2tlZbc0cHklwg05fq6/aofQIG2FGID4QiA:7ZU31sp/05LaobX8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bf6f4d59ddfd2c9cc152e26507eca0fc_JaffaCakes118

Files

bf6f4d59ddfd2c9cc152e26507eca0fc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

52d88067f7d0cf033797edaec026a563

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
MessageBoxA
PeekMessageA
GetSysColor
SetForegroundWindow

kernel32

GetCurrentProcess
InterlockedIncrement
SetLastError
CreateFileA
GetFileType
FindClose
VirtualQuery
CreateFileW
UnmapViewOfFile
InitializeCriticalSection
CreateProcessA
GetModuleHandleW
ResetEvent
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
GetStringTypeA
CreateThread
RaiseException
GetModuleHandleA
GetProcessHeap
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
DeleteFileA
GetConsoleMode
LoadLibraryA
FlushFileBuffers
HeapAlloc
LCMapStringA
WaitForSingleObject
GetModuleFileNameW
GetSystemInfo
GetConsoleOutputCP
GetLastError
GetSystemTime
VirtualAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapReAlloc
GetStringTypeW
LCMapStringW

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 468KB - Virtual size: 466KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52d88067f7d0cf033797edaec026a563

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 32KB - Virtual size: 29KB

.data Size: 468KB - Virtual size: 466KB

.rsrc Size: 4KB - Virtual size: 608B

.text
Size: 32KB - Virtual size: 29KB

.data
Size: 468KB - Virtual size: 466KB

.rsrc
Size: 4KB - Virtual size: 608B