15de72177718bd7abc68b31baa12114d_JaffaCakes118

General

Target

15de72177718bd7abc68b31baa12114d_JaffaCakes118
Size

121KB
MD5

15de72177718bd7abc68b31baa12114d
SHA1

ec31d4783887eb8b49898fd5d90cc62885d650e9
SHA256

3d2dfe300214b52b52689f98eaa1e744b573013c8aa9098b58f74e6c6623d195
SHA512

2eda63aeba9ca5a4019ff51e8d3ffc3528c719ed507b206976c2067ea1daf69223a10a630c4abaeb0b58cab8edf030eb50fc343253df2a18964da53e2e51eb24
SSDEEP

3072:Of/adVL+6J6HpQ4JCaIP7GJt66mB/E4tS1xT8bpkBD:2JVJgGJwJ/DSzFBD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15de72177718bd7abc68b31baa12114d_JaffaCakes118

Files

15de72177718bd7abc68b31baa12114d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2cffa420544a3b6cd8cb35ac59799cdf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LeaveCriticalSection
FormatMessageW
SetFileTime
CloseHandle
GetFileSize
IsBadWritePtr
GetStartupInfoW
SetFileTime
SetFileAttributesW
lstrcpyA
ReadFile
InitializeCriticalSection
CreateMutexW
lstrcatA
FindResourceA
HeapCreate
GetLastError
GetModuleHandleW
SetFileTime
GetModuleHandleA
GetLocalTime

msi

MsiConfigureFeatureA
MsiCollectUserInfoA
MsiDatabaseCommit
MsiAdvertiseProductW

user32

PeekMessageW
LoadCursorW
PostMessageW
GetWindowLongW
SetFocus
IsWindow
wsprintfW
GetWindowRect
IsDialogMessageA
GetWindowTextA
DispatchMessageA
SetCursorPos
IsZoomed

clbcatq

SetSetupSave

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rich
Size: 1KB - Virtual size: 193B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 129B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2cffa420544a3b6cd8cb35ac59799cdf

Headers

File Characteristics

Imports

kernel32

msi

user32

clbcatq

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 104KB - Virtual size: 103KB

.rich Size: 1KB - Virtual size: 193B

.data2 Size: 512B - Virtual size: 129B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 104KB - Virtual size: 103KB

.rich
Size: 1KB - Virtual size: 193B

.data2
Size: 512B - Virtual size: 129B