037e6b96fd131ac2723483df5bf60a7b_JaffaCakes118

General

Target

037e6b96fd131ac2723483df5bf60a7b_JaffaCakes118
Size

68KB
MD5

037e6b96fd131ac2723483df5bf60a7b
SHA1

2c5a09a09187c71f8338beeecc2ed877d2b7b230
SHA256

f49b80fcec9088b03161db20486e3758e1a0b0186be44b9dace7b4f235898345
SHA512

a5102375fe207f4598ac6737645ef904f7bf01a228b87a0e403fb1041fbbeae018f146e506db9ae2ae3a19632804c4e1ac396a50eeddf1c80cbe3a32aca1c3da
SSDEEP

1536:DwVqlrblN64+RnMge3BRIOPHcarytzRIQko/hAxUIEm:DwVqlrblNP+RnMDRIZauPI1dUU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
037e6b96fd131ac2723483df5bf60a7b_JaffaCakes118

Files

037e6b96fd131ac2723483df5bf60a7b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ebbb87bfb8aa3d6fd79208019b8d3dd4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
SetFileTime
GetLocalTime
LeaveCriticalSection
SetFileTime
FindResourceA
lstrcatA
SetFileTime
GetLastError
SetFileAttributesW
HeapCreate
IsBadStringPtrW
GetModuleHandleA
CreateMutexA
lstrcpyA
InitializeCriticalSection
GetFileSize
FormatMessageW
ReadFile
GetStartupInfoW
GetCurrentDirectoryW

msi

MsiCloseHandle
MsiCloseAllHandles
MsiCreateRecord
MsiAdvertiseProductA

user32

DispatchMessageA
GetWindowTextA
IsDialogMessageA
IsWindow
GetWindowLongW
PeekMessageW
wsprintfW
IsZoomed
SetCursorPos
PostMessageW
SetFocus
LoadCursorW
GetWindowRect

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 211B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 146B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ebbb87bfb8aa3d6fd79208019b8d3dd4

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 53KB - Virtual size: 68KB

.data1 Size: 1024B - Virtual size: 211B

.data2 Size: 512B - Virtual size: 146B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 53KB - Virtual size: 68KB

.data1
Size: 1024B - Virtual size: 211B

.data2
Size: 512B - Virtual size: 146B