024ece6a81e8456ae7d608866fc96bfd_JaffaCakes118

General

Target

024ece6a81e8456ae7d608866fc96bfd_JaffaCakes118
Size

52KB
MD5

024ece6a81e8456ae7d608866fc96bfd
SHA1

62469d9d72f4d9670def4e9d061bd79cf49376a7
SHA256

f5ae3971704a117d5121d019f2906eca1662bffe5e2a830a90aa74018fb2732d
SHA512

0f214eb9dd266b0db8bae621d2698c8dd45bb903390eaba55eb2c4d5c51efb3730cbfb87e2ec2446f247b5a340c925d85a8e7494873ea3fb540cd2b979018b01
SSDEEP

768:0xhGoViMhJk5RA1AUYk4s3SEBnPLiOSYroZ:0xAoHAUYk7SElGao

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
024ece6a81e8456ae7d608866fc96bfd_JaffaCakes118

Files

024ece6a81e8456ae7d608866fc96bfd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65a79f4fe7f7eaa4a7366de82b9262c1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
FormatMessageA
CreateFileA
GetSystemInfo
GetFileSize
ReadFile
LocalFree
GetLastError
GetVolumeInformationA
CloseHandle
SetStdHandle
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
SetFilePointer
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
RtlUnwind
WideCharToMultiByte
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
FlushFileBuffers

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA

ole32

StringFromGUID2
CoCreateGuid

netapi32

Netbios

wininet

HttpSendRequestExA
InternetWriteFile
HttpEndRequestA
HttpOpenRequestA
InternetReadFile
HttpSendRequestA
InternetCloseHandle
InternetOpenA
InternetConnectA
InternetAttemptConnect
HttpQueryInfoA
HttpAddRequestHeadersA

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65a79f4fe7f7eaa4a7366de82b9262c1

Headers

File Characteristics

Imports

kernel32

advapi32

ole32

netapi32

wininet

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 17KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 17KB