bfb8a96b0b4f414e18c26a8b0ab08898_JaffaCakes118

General

Target

bfb8a96b0b4f414e18c26a8b0ab08898_JaffaCakes118
Size

155KB
MD5

bfb8a96b0b4f414e18c26a8b0ab08898
SHA1

31f1319fdb9ca0764f62f3e369d42bf80cd2860e
SHA256

e16c23bb3b741f81073895dfd6a53458cb0ac76c60bff1f487808fe7c2d1bdee
SHA512

25db108c14ef928eaa63dbc29954070550e2a281bc2eb092f528d48ed9f482965d4d8fb3d65c2a5229e59f44750213260813ac30ff56de6c37f4b0ddb4ce5f75
SSDEEP

3072:Sk7JKvH512Qmk+qZyE1YPgcq/ljfgecKg9mhG:H7aHWQmk+qT4gp/Zoe0chG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bfb8a96b0b4f414e18c26a8b0ab08898_JaffaCakes118

Files

bfb8a96b0b4f414e18c26a8b0ab08898_JaffaCakes118
.exe windows:1 windows x86 arch:x86

8ad55f7fb22a89b353a11c5727ab4c42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Module32Next
HeapAlloc
GetVersionExA
QueryPerformanceFrequency
LCMapStringW
HeapCreate
TlsGetValue
SetEvent
GetDateFormatA
WriteConsoleA
FreeEnvironmentStringsW
SetHandleCount
SearchPathA
GetModuleHandleA
GetConsoleOutputCP
SizeofResource
FindClose
GetTimeFormatA
GetEnvironmentStrings
GetDriveTypeA
RaiseException
GlobalUnlock
GetModuleFileNameA
CreateFileA
GetStartupInfoA
GetSystemDirectoryA
FindResourceA
CreateEventW
IsBadReadPtr
ReadProcessMemory
DeviceIoControl
GetACP
lstrcatA

msvcrt

_wstat64
_fgetchar
_adj_fprem
_adj_fdiv_r
_wasctime
_ismbbpunct
modf
_ismbcpunct
_wsearchenv
memset
_swab
_winver
_except_handler3
_mbsdup
__p__fmode
__set_app_type
_longjmpex
__p__commode
_XcptFilter
_ultow
_popen
_wcsnicoll
_wfullpath
_stat64
_controlfp
_nextafter
sinh
ungetwc
putc
iswalpha
_wtol
_timezone
realloc
fwprintf
_acmdln
strlen
_wunlink
_initterm
_ctype
_gmtime64
getchar
_ungetch
memcpy
_aligned_offset_malloc
_pgmptr
_wcsrev
exit
_wctime64
__getmainargs
_clearfp
_exit
__setusermatherr
_adjust_fdiv

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ad55f7fb22a89b353a11c5727ab4c42

Headers

File Characteristics

Imports

kernel32

msvcrt

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 141KB - Virtual size: 141KB

.data Size: 512B - Virtual size: 141B

.rsrc Size: 512B - Virtual size: 116B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 141KB - Virtual size: 141KB

.data
Size: 512B - Virtual size: 141B

.rsrc
Size: 512B - Virtual size: 116B