f5f8a1a10d58694222a1797e85b6dd4f_JaffaCakes118

General

Target

f5f8a1a10d58694222a1797e85b6dd4f_JaffaCakes118
Size

356KB
MD5

f5f8a1a10d58694222a1797e85b6dd4f
SHA1

d186f2e21148610441c70a6a177912349b4553b1
SHA256

1545f384427faa7be9449da92694f372f4d6d05a9dd360a9106ffa09bbca15d6
SHA512

ba9da0b072cbb6844b38fadae01f271bf46b44031b91778d8db2132e0d02941d70b00d43b9c41ffe0128d02616ca351220c0320324c24ccc91cfb89f1371ee42
SSDEEP

6144:qYkiHYZfCoovpkGgnDh8Lb5LuWZJrmbUPpejV/oYjNWM1Doteb1Wxm03BQY2:qiHYho67nt8v59bDYBWqogb1Wh3BK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5f8a1a10d58694222a1797e85b6dd4f_JaffaCakes118

Files

f5f8a1a10d58694222a1797e85b6dd4f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

71ab15966cbbed422a2422a5bc02e1ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
VirtualAlloc
CreateFileA
TlsSetValue
Sleep
TlsGetValue
FindClose
VirtualFree
GlobalAlloc
LoadResource
QueryPerformanceCounter
CreateProcessA
LocalFree
CloseHandle
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
GetStringTypeA
GetCPInfo
GetModuleHandleA
CreateMutexA
GetCurrentThread
GetSystemInfo
GetCommandLineA
MultiByteToWideChar
WideCharToMultiByte
GetCurrentProcessId
GetEnvironmentStrings
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
GetModuleFileNameA
GetVersionExA
TlsAlloc
GetThreadLocale
GetTickCount
HeapDestroy
LCMapStringA
FreeLibrary
HeapCreate
EnterCriticalSection
HeapFree
GetLastError
GetVersion
GetCurrentThreadId
ExitProcess
HeapAlloc
GetProcessHeap
GetProcAddress
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
LeaveCriticalSection
GetACP
GetOEMCP
HeapReAlloc
LoadLibraryA
GetStringTypeW
LCMapStringW

user32

SetCursor
DestroyWindow
FillRect
CreateWindowExA
InvalidateRect
ClientToScreen
GetDlgItem
GetClientRect
LoadStringA
GetDC
IsWindowEnabled
DispatchMessageA
IsWindow
BeginPaint
EndDialog
GetParent

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 324KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

71ab15966cbbed422a2422a5bc02e1ad

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 24KB

.data Size: 324KB - Virtual size: 320KB

.text
Size: 28KB - Virtual size: 24KB

.data
Size: 324KB - Virtual size: 320KB