2830cfeed99d135544828b79ab39c839_JaffaCakes118

General

Target

2830cfeed99d135544828b79ab39c839_JaffaCakes118
Size

37KB
MD5

2830cfeed99d135544828b79ab39c839
SHA1

d8b0bf2d9bed4702d0eac71652bd1ea2336fbe6e
SHA256

ce4a360766722699b0c49533be427ec315cfba092d854d43e5809dcfdd4a24ae
SHA512

b3bc55619a1dd96174eacae073d76e1492f725531d833aecb0379e2c7a397d2a615582e5e29bb11f36e13b14c3f27232694dc79523db756b8b9e4b512c701f2f
SSDEEP

768:zRJPgioPLvRtg2B2W9a6w20hkv0+fSqdLKE457Pr:zjJojp/0hO0+qqtWbr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2830cfeed99d135544828b79ab39c839_JaffaCakes118

Files

2830cfeed99d135544828b79ab39c839_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a48ca9845552fa7c6f1439bd63106e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
FreeLibrary
SetUnhandledExceptionFilter
CreateFileA
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
LoadLibraryA
GetProcAddress
GetStringTypeA
GetStringTypeW
SetEndOfFile
CompareStringA
GetLocalTime
ReadFile
WriteFile
ExitProcess
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
CompareStringW
RtlUnwind
SetEnvironmentVariableA
HeapAlloc
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapReAlloc
HeapSize
CloseHandle
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc

user32

DestroyWindow
DialogBoxParamA
BeginPaint
GetClientRect
DrawTextA
EndPaint
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
EndDialog
PostQuitMessage

Sections

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a48ca9845552fa7c6f1439bd63106e2

Headers

File Characteristics

Imports

kernel32

user32

Sections

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 29KB - Virtual size: 36KB

.rsrc Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 29KB - Virtual size: 36KB

.rsrc
Size: 3KB - Virtual size: 3KB