d4c83501abfb51b30f53d53abc391b8b_JaffaCakes118

General

Target

d4c83501abfb51b30f53d53abc391b8b_JaffaCakes118
Size

266KB
MD5

d4c83501abfb51b30f53d53abc391b8b
SHA1

26f130983d562ef774ee02cb4c0155c67ddd46fe
SHA256

6a7378cf6ed4a035ef177ee06323ff6cf70b9ea9ab443dbc7238c3fc90489115
SHA512

91ba882b38dc07d3efdbb83c583124f802a98d28e5de12dc7126d0466c606ca8d0d71310a82f6aa4a6211a0460d0b254f71c1e1ebcb3fb7d52f03091bc8ad2d8
SSDEEP

6144:nEeJ1KbBxqAbCkYAVvDDeoZr6dGfujuH2MoGBPTjgxbru:nEeJgBxqAB9VvDDP+ofufeBPfgx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d4c83501abfb51b30f53d53abc391b8b_JaffaCakes118

Files

d4c83501abfb51b30f53d53abc391b8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

32031bd4c8640fd752894d9ac76daa96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
WriteFile
InitializeCriticalSection
GetCPInfo
GetProcAddress
GetFileType
HeapReAlloc
WideCharToMultiByte
GetCommandLineA
MultiByteToWideChar
GetCurrentProcessId
HeapAlloc
DeleteCriticalSection
GetStringTypeW
SetHandleCount
GetModuleHandleA
TlsFree
GetConsoleOutputCP
SetConsoleCP
InterlockedExchange
HeapDestroy
UnhandledExceptionFilter
GetEnvironmentStrings
TlsSetValue
GetACP
SetEnvironmentVariableW
LCMapStringW
VirtualProtectEx
GetProcessHeaps
ExitProcess
GetTickCount
GetNamedPipeHandleStateW
VirtualFree
HeapFree
GetOEMCP
GetModuleFileNameA
TlsAlloc
LoadLibraryA
QueryPerformanceCounter
GetLastError
VirtualAlloc
GetModuleFileNameW
GetCurrentThread
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetStartupInfoA
GetVersion
IsBadWritePtr
LeaveCriticalSection
GetNamedPipeInfo
EnterCriticalSection
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetStdHandle
FreeEnvironmentStringsW
WaitForSingleObject
GetStringTypeA
HeapCreate
FreeEnvironmentStringsA
GetTempPathW
LCMapStringA
TlsGetValue

user32

IsZoomed
SetMenuContextHelpId
GetKBCodePage

Sections

.avx��
Size: 262KB - Virtual size: 262KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

32031bd4c8640fd752894d9ac76daa96

Headers

File Characteristics

Imports

kernel32

user32

Sections

.avx���� Size: 262KB - Virtual size: 262KB

.avx��
Size: 262KB - Virtual size: 262KB