c77486731963e81fd9887130540799c7_JaffaCakes118

General

Target

c77486731963e81fd9887130540799c7_JaffaCakes118
Size

294KB
MD5

c77486731963e81fd9887130540799c7
SHA1

7ca1840ec635f04be571313b5e9536baf1f5d7e0
SHA256

ed7229c6ad098afc4292793c3a71c52610dc1de3079ca231c5da696636b5d17b
SHA512

982f7cf393ab84d8f3d80a3d3e07b3bd4b271f796a13ee100b5c053194f0cdb01ee8a755f9ab95655a0ecad741b31f78f0baa86863d993cbeb36b55a150a2108
SSDEEP

6144:rHRoViZjFK+yUM0/7ofvrdgW3voMXmyKqbZYO7N2zC:rHRwu6uoHyW3wLyKq9YOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c77486731963e81fd9887130540799c7_JaffaCakes118

Files

c77486731963e81fd9887130540799c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0931d5de6663cf2c9cec77f8c7e09658

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
WSAGetLastError

kernel32

GetCurrentThreadId
VirtualProtect
GetLocaleInfoA
GetSystemTime
GlobalAlloc
GetModuleFileNameA
GetModuleHandleA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
RtlUnwind
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersionExA
InterlockedExchange
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetSystemInfo
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW

user32

LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
DefWindowProcA
DestroyWindow
DialogBoxParamA
BeginPaint
EndPaint
PostQuitMessage
EndDialog
CreateWindowExA
ShowWindow
UpdateWindow

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0931d5de6663cf2c9cec77f8c7e09658

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 212KB - Virtual size: 211KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 212KB - Virtual size: 211KB

.rsrc
Size: 48KB - Virtual size: 47KB