f5b9fe29cfad8bd75e999898666616aa_JaffaCakes118

General

Target

f5b9fe29cfad8bd75e999898666616aa_JaffaCakes118
Size

21KB
MD5

f5b9fe29cfad8bd75e999898666616aa
SHA1

7ccfe9406cd4716e310abf0e7228eb1730eefc8c
SHA256

b0dfadbe5eeef0a2444fe2a6c1274c21192c87f2805dc285c96613199df2e045
SHA512

11a85267daa3b9d603b5b7594b9e8e47e1b11e2814a254cacda9064ced5c7fac2a3279b27adb1c5657be61b5423c78900b66a48ae0a697e6aaf7bb04bdf204f5
SSDEEP

384:bPHYj9QtOJ+vn70diBn08070Q1VzCeVrgINstbRD5OXvojKh0c:yM7B87D/CxINuRkXcNc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5b9fe29cfad8bd75e999898666616aa_JaffaCakes118

Files

f5b9fe29cfad8bd75e999898666616aa_JaffaCakes118
.exe windows:28315 windows x86 arch:x86

34dadf4d405bf1152e4c274ab1014d9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetCurrentThreadId
HeapAlloc
VirtualAlloc
GetACP
lstrlenW
VirtualAlloc
CreateFileW
WaitForSingleObject
FreeLibrary
GetModuleFileNameA
SetEvent
VirtualAlloc
GetCurrentThreadId
GetVersionExA
SetLastError
GetProcessHeap
TerminateProcess
GetSystemTimeAsFileTime
GetProcAddress
LocalFree
lstrcmpiW
InitializeCriticalSection
TerminateProcess
GetVersionExA
GetModuleHandleW
ExitProcess
DeleteCriticalSection
LocalFree
LeaveCriticalSection
HeapReAlloc
GetCommandLineW

user32

SendMessageA
UpdateWindow
SetWindowPos
UpdateWindow
UpdateWindow
GetMenu
IsWindow
PostQuitMessage
GetWindowLongW
FillRect
CallWindowProcW
BeginPaint
MessageBeep
GetSystemMenu
LoadStringW
GetSysColor
GetDlgCtrlID
SetWindowPos
MapWindowPoints
MessageBoxW
ReleaseDC
PeekMessageW
GetParent
RegisterClassW
SetWindowTextW
SetCapture
ReleaseDC
ReleaseDC
SetRect
SetWindowLongW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34dadf4d405bf1152e4c274ab1014d9e

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 5KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 5KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB