c0e51a6efe178b8e273911432c0a04f7_JaffaCakes118

General

Target

c0e51a6efe178b8e273911432c0a04f7_JaffaCakes118
Size

158KB
MD5

c0e51a6efe178b8e273911432c0a04f7
SHA1

793fea0b887c0ebee820fdcf039ab97f17754f28
SHA256

b86051cc884438f5759b720358ec03d66ae15b87651f0a0bb92a7b49e891edd9
SHA512

8b93ce916930353b890abd60634b00ac814463013e7be23baa9b13ee2b55e42b7919fe76b25ec312b7c730cdcc93897bf5f8d96b94426ede277285caf8d98604
SSDEEP

3072:b5hSClRPhHtSRYz7539Ajn8gKNdVP5jIyzGbtYQ3xXUg:b5hVl1p8RY/539yJKLTjRSbtJxXZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0e51a6efe178b8e273911432c0a04f7_JaffaCakes118

Files

c0e51a6efe178b8e273911432c0a04f7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

9b4a1d37293b73b60069cdd16ed2fe86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
lstrlenA
SetThreadAffinityMask
GetSystemDirectoryA
GetStartupInfoA
LCMapStringA
ExpandEnvironmentStringsA
HeapSize
GetProcessHeap
GetFileAttributesA
InterlockedExchange
SetLastError
InitializeCriticalSection
LocalAlloc
GetStdHandle
Module32First
GetModuleHandleA
MulDiv
SetFilePointer
GlobalLock
GetCPInfo
FileTimeToLocalFileTime
TlsGetValue
SetProcessWorkingSetSize
PulseEvent
CreateThread
GetEnvironmentStringsW
WideCharToMultiByte
GetNumberFormatA
lstrcmpA
GetLocaleInfoA
IsBadStringPtrW
GetModuleHandleW
GetEnvironmentStrings
Sleep
GetProcAddress
WaitForSingleObject
WriteFile

user32

RemoveMenu
GetMenu
EnumWindows
SetWindowTextA
GetClientRect
PtInRect
InvalidateRect
SetTimer
GetUpdateRgn
GetSysColor
ExitWindowsEx
CloseClipboard
GetWindowDC
DrawFrameControl
ReleaseDC
DestroyWindow
DialogBoxParamA
DrawEdge
LoadCursorA
SystemParametersInfoA
ModifyMenuA
ShowWindow
GetMenuItemCount
SetScrollInfo
CreateIconIndirect
RegisterClassA
MsgWaitForMultipleObjects
IntersectRect
BeginDeferWindowPos

msvcrt

_adjust_fdiv
memcpy
__getmainargs
_exit
__set_app_type
__p__fmode
__setusermatherr
_initterm
_controlfp
_acmdln
_except_handler3
__p__commode
_XcptFilter
exit

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b4a1d37293b73b60069cdd16ed2fe86

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 192KB

.rsrc Size: 130KB - Virtual size: 130KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 192KB

.rsrc
Size: 130KB - Virtual size: 130KB