07cf92a7cf590d704d3b7a083dbc9d84_JaffaCakes118

General

Target

07cf92a7cf590d704d3b7a083dbc9d84_JaffaCakes118
Size

450KB
MD5

07cf92a7cf590d704d3b7a083dbc9d84
SHA1

09e7a6786798a0d073e2a6e21485519af57dee38
SHA256

f6bf5dc35570ac01704beeb9df52bb666974186416abd50910e206e5a5df25a3
SHA512

aef536e1a9e7d1a7e81e4d85d9d4d8e2ba12c99aa89dc6f65ba8f57b467a695229e14aaf8e533fe8d0318b302e5f215d32291a30f6856c3ac5b5f690b4b65b60
SSDEEP

6144:0iZBFjjxl/LqB529hNmZOuMZFCpCzrvyQB7s9UhHI95HnYJEHqFY5g8KQMs0RsqF:HFnA8su6QBBhoDnYJEH4YpKQ70R9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07cf92a7cf590d704d3b7a083dbc9d84_JaffaCakes118

Files

07cf92a7cf590d704d3b7a083dbc9d84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6b87091f60cab3aa9e2684094ba31e50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsFree
TlsSetValue
LCMapStringA
GetCurrentThread
GetProcAddress
GetOEMCP
HeapReAlloc
WriteFile
GetEnvironmentStrings
SetLastError
GetCurrentProcessId
HeapAlloc
FreeEnvironmentStringsA
HeapCreate
TlsAlloc
GetModuleHandleA
DeleteCriticalSection
CopyFileA
GetLocaleInfoW
InterlockedExchange
IsBadWritePtr
VirtualFree
GetFileType
UnhandledExceptionFilter
GetCommandLineA
EnterCriticalSection
MultiByteToWideChar
SetThreadPriority
SetCurrentDirectoryA
ExitProcess
GetTickCount
OpenFile
WideCharToMultiByte
HeapFree
GetStdHandle
GetModuleFileNameA
TlsGetValue
LoadLibraryA
QueryPerformanceCounter
GetStartupInfoA
VirtualAlloc
EnumCalendarInfoA
GetEnvironmentStringsW
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetStringTypeA
HeapDestroy
LCMapStringW
SetHandleCount
WaitForSingleObjectEx
FreeEnvironmentStringsW
GetLastError
GetSystemTimeAsFileTime
GetStringTypeW
GetCPInfo
MapViewOfFileEx
GetVersion
InitializeCriticalSection
GetACP
GetConsoleCursorInfo
LeaveCriticalSection

advapi32

RegCreateKeyW

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 270KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b87091f60cab3aa9e2684094ba31e50

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 170KB - Virtual size: 169KB

.data Size: 270KB - Virtual size: 269KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 170KB - Virtual size: 169KB

.data
Size: 270KB - Virtual size: 269KB

.rsrc
Size: 9KB - Virtual size: 8KB