006185980ca72ca6fce49967a71bbea8_JaffaCakes118

General

Target

006185980ca72ca6fce49967a71bbea8_JaffaCakes118
Size

29KB
MD5

006185980ca72ca6fce49967a71bbea8
SHA1

6fb311100b852699c952ed0228f1ecd144c3e28f
SHA256

e7843bb27da4f0343cd54a0cd6253d420461dabc8e0ad3ad7cdeaa7f2da73a21
SHA512

14c722fc02338484bb0aa7f500eeb0e46f35b3e4ec8e916ca39ac3580d09a6fafca411ae27f0e6949c6b7de8cc5b5d4a0efa2729becc5ee766dc5b624358c156
SSDEEP

768:ONuxavKHArLgFFU1fNXHACWn16TEMdijVt7LMRtGa:Of4D21fN3Ah16gi0JL1a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
006185980ca72ca6fce49967a71bbea8_JaffaCakes118

Files

006185980ca72ca6fce49967a71bbea8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2349392b55ccd01b1a28fe9ea6e2605c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
UnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentThreadId
CloseHandle
InterlockedIncrement
Sleep
InterlockedDecrement
InterlockedExchange
InitializeCriticalSection
GetCurrentThreadId
ReadFile
Sleep
EnterCriticalSection
UnhandledExceptionFilter
CloseHandle
SetLastError
HeapAlloc
GetCurrentProcess
Sleep
lstrcmpiW
ReadFile
GetModuleHandleA
GetSystemTimeAsFileTime
CreateThread
CloseHandle
GetCurrentProcessId
CreateThread
Sleep
GetModuleFileNameW
GetCurrentProcess
GetLastError
GetModuleFileNameW
GetModuleFileNameA

user32

GetDC
EndPaint
InvalidateRect
ShowWindow
DefWindowProcW
EnableWindow
SetTimer
GetDlgItem
PostMessageW
PeekMessageW
LoadStringW
MessageBoxW
LoadCursorW
LoadCursorW
SetFocus
EndPaint
MessageBoxW
GetWindowLongW
MessageBoxW
SetDlgItemTextW
KillTimer
ReleaseDC
PostQuitMessage
SetWindowTextW
GetSysColor
PostMessageW
GetClientRect
SendMessageW
GetDesktopWindow
EndPaint
LoadCursorW
GetClientRect
TranslateMessage
EndDialog
TranslateMessage
ShowWindow
DialogBoxParamW

Sections

.text
Size: 21KB - Virtual size: 28KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2349392b55ccd01b1a28fe9ea6e2605c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 21KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 24KB

.text
Size: 21KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 24KB