07c4c73fca8c6fa58245a55c434417fa_JaffaCakes118

General

Target

07c4c73fca8c6fa58245a55c434417fa_JaffaCakes118
Size

10KB
MD5

07c4c73fca8c6fa58245a55c434417fa
SHA1

cb0d999babead0f7a6833b34177f26300f796e17
SHA256

b46993efe89019d4ebf609eedc700e5a175b315b080a05f25cd95d7bb2398b5b
SHA512

38838eddad0bc18d3cda6a2fe313b2ddfd47dd071f5575feff715d01e4e5ff2403f88d3cc0dff19d8db14f99810da54edd825f89ba5c649bc6acd58cd921a289
SSDEEP

192:NIuMdqUMimgIkZlzmlym9lWk6jHSNJnwsJwDSSla0Khy7t3y:muMdTMimgIkZlzmlym9lkjHSNJwk+SOe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07c4c73fca8c6fa58245a55c434417fa_JaffaCakes118

Files

07c4c73fca8c6fa58245a55c434417fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

095c7377985924b547f619612f9118c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtectEx
TerminateProcess
ReadProcessMemory
OpenProcess
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
GetLastError
GetExitCodeProcess
GetCommandLineA
ExitProcess
CreateMutexA
CreateFileA
CloseHandle
WriteProcessMemory

gdi32

TextOutA
CreateFontA

user32

RegisterClassExA
SendMessageA
SetTimer
PostQuitMessage
TranslateMessage
UpdateWindow
MessageBoxA
LoadIconA
LoadCursorA
GetWindowThreadProcessId
GetSystemMetrics
GetSysColor
GetMessageA
GetDC
FindWindowA
EndPaint
DispatchMessageA
DefWindowProcA
CreateWindowExA
BeginPaint
ShowWindow

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rebld_r
Size: 932B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rebld_i
Size: 909B - Virtual size: 909B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

095c7377985924b547f619612f9118c6

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 928B

.rebld_r Size: 932B - Virtual size: 932B

.rebld_i Size: 909B - Virtual size: 909B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 928B

.rebld_r
Size: 932B - Virtual size: 932B

.rebld_i
Size: 909B - Virtual size: 909B