c14758147b40a7cd5f24556f08d953ca_JaffaCakes118

General

Target

c14758147b40a7cd5f24556f08d953ca_JaffaCakes118
Size

17KB
MD5

c14758147b40a7cd5f24556f08d953ca
SHA1

3f8392f8d9b5400512ce1cc36b5bc8354ad7783a
SHA256

889e7277a2c6670fcbbc74986bef8bfad650d47ef1d98e0c2d735d401ec1b6cc
SHA512

a19118fd0bb46257463ef6b90eb2a9501be05a55a60ff46a55661d043d662cbd68606dbd017a5d975fbd3cc36f22cca2fb9ca4d71bba4e58746876aadecd3b69
SSDEEP

384:4ykwXszLsGfv/Tip+JA1IyJ53CsfsPLxd:4yPXasGfj81JJ53K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c14758147b40a7cd5f24556f08d953ca_JaffaCakes118

Files

c14758147b40a7cd5f24556f08d953ca_JaffaCakes118
.exe windows:64511 windows x86 arch:x86

85362d094f67697bce0cc98698154949

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
Sleep
CloseHandle
GetCommandLineA
TerminateProcess
GetProcessHeap
LocalFree
LoadLibraryW
GetProcAddress
GetCurrentThreadId
GetTickCount
CloseHandle
CreateFileW
VirtualAlloc
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetProcessHeap
SetFilePointer
GetModuleHandleA
GetProcAddress
LeaveCriticalSection
GetStartupInfoW
SetFilePointer
SetUnhandledExceptionFilter
GetACP
LocalFree
UnhandledExceptionFilter
SetLastError
QueryPerformanceCounter
UnhandledExceptionFilter
LoadLibraryA
WaitForSingleObject
WideCharToMultiByte
HeapDestroy
ReadFile
GetModuleHandleA
GetSystemTimeAsFileTime
GetLastError
CreateThread
lstrcpyW
MultiByteToWideChar
GetProcAddress
WideCharToMultiByte
DeleteCriticalSection

user32

GetSysColor
GetSystemMenu
GetWindow
CreateWindowExW
EnableWindow
EndPaint
GetDlgCtrlID
GetWindowRect
GetCursorPos
ReleaseDC
GetSystemMenu
IsDialogMessageW
EndDialog
LoadCursorW
GetDC
SetDlgItemTextW
GetClientRect
CharNextW
GetDlgCtrlID
BeginPaint
LoadIconW
IsDialogMessageW
EndPaint
GetDlgCtrlID
GetDesktopWindow
SetFocus
SetFocus
IsWindowVisible
PostMessageW
DispatchMessageA

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85362d094f67697bce0cc98698154949

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB