01afb2b53f21aba4dd22e8954b8b34e0_JaffaCakes118

General

Target

01afb2b53f21aba4dd22e8954b8b34e0_JaffaCakes118
Size

29KB
MD5

01afb2b53f21aba4dd22e8954b8b34e0
SHA1

7a7d97f2b28a2b00049077997bf90967a19f9f3c
SHA256

3e776d3e10d723cd3ae375eb1372f4e382c48e4a3bec4bcce99546e8804f0cc6
SHA512

3a33a43dd68b816d0b0123f80b738895c94358a65306838720f62edd6883ae378b04666d121e53c440dbd51c9c60870cdc44ccc44d552a3b711325fa33e03aab
SSDEEP

768:7MIDvGJc8Nkv8DTueHUmTcYtEH4ZEzqIh3Mvve82+kASYy:BHTweJ+kA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
01afb2b53f21aba4dd22e8954b8b34e0_JaffaCakes118

Files

01afb2b53f21aba4dd22e8954b8b34e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d9481ff34b6027850c95fdc0c6575a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LoadLibraryA
CloseHandle
lstrcatA
lstrcpyA
SetFileTime
SetFileAttributesW
GetStartupInfoW
InitializeCriticalSection
GetModuleHandleA
LeaveCriticalSection
CreateMutexW
ReadFile
SetFileTime
FormatMessageW
SetFileTime
GetLastError
IsBadWritePtr
GetFileSize
FindResourceA
GetLocalTime
HeapCreate

msi

MsiCollectUserInfoA
MsiDatabaseCommit
MsiConfigureFeatureA
MsiAdvertiseProductW

user32

SetCursorPos
PeekMessageW
GetWindowRect
SetFocus
wsprintfW
PostMessageW
IsWindow
GetWindowTextA
GetWindowLongW
IsZoomed
LoadCursorW
IsDialogMessageA
DispatchMessageA

clbcatq

SetSetupSave

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ole
Size: 512B - Virtual size: 129B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1d9481ff34b6027850c95fdc0c6575a9

Headers

File Characteristics

Imports

kernel32

msi

user32

clbcatq

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 11KB - Virtual size: 11KB

.rich Size: 1KB - Virtual size: 193B

.ole Size: 512B - Virtual size: 129B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.rich
Size: 1KB - Virtual size: 193B

.ole
Size: 512B - Virtual size: 129B