e014673cc9de4d76a77a40756d7d643d_JaffaCakes118

General

Target

e014673cc9de4d76a77a40756d7d643d_JaffaCakes118
Size

52KB
MD5

e014673cc9de4d76a77a40756d7d643d
SHA1

865e9d8c3c78f311761b4bf07139b7aa21f3102a
SHA256

44a72ba09f9bd5be5e64ffe83acd624c2c55c5b9b44526483007c700e3a44eff
SHA512

000a6b5e853bb2ef21a527f8cf8d59d58482c2d56ce89dc18a0df264a4df33521addbb7516d07522038e9e9915696daf21e5f2571f1b920b87abad1b7fa73bd1
SSDEEP

768:k3gqeYjoybE9bCGuHCbyIRh8Iuhp3VPadnqIlIMhug0:ugqeYfEIGIET/8IuhpFenlI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e014673cc9de4d76a77a40756d7d643d_JaffaCakes118

Files

e014673cc9de4d76a77a40756d7d643d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e29feb92d23ab371b3cd5253e8a91dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetLocaleInfoA
FlushFileBuffers
GetStringTypeW
GetSystemInfo
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
GetSystemTimeAsFileTime
GetStringTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetFilePointer
HeapAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
RtlUnwind
InterlockedExchange
VirtualQuery
SetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
CloseHandle

user32

DefDlgProcA
LoadCursorA
RegisterClassA
DialogBoxParamA
MessageBoxIndirectA
EndDialog
GetDlgItem
SetFocus
SendMessageA
CharUpperA

comctl32

ord16
InitCommonControlsEx

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e29feb92d23ab371b3cd5253e8a91dd

Headers

File Characteristics

Imports

kernel32

user32

comctl32

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 8KB - Virtual size: 5KB