3bae96b4dc432bbaa618c3842d648f3b_JaffaCakes118

General

Target

3bae96b4dc432bbaa618c3842d648f3b_JaffaCakes118
Size

80KB
MD5

3bae96b4dc432bbaa618c3842d648f3b
SHA1

66090381fd7a5c0314e3ba824e51a6c2dcf5632e
SHA256

f6d4223ba0e1ee04647797910c1255b1b18dc95dfc967f35eb88b97b82ae8bfd
SHA512

e28743f4b9100e61f795a76c76528aabee9beec932963ea7be27f2abef944d682396b0d285a0e8589d2bf8952c94339c78f463cef99cb9fda9e388e8784b405e
SSDEEP

768:PuCM+egiB4ZgjpUEz6kcSgv1wYAK8l9VbslwZZV9bUqa7wMChPPSQu2x:PPM+aDjpBGJv1wqRiZZVNGWcb0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bae96b4dc432bbaa618c3842d648f3b_JaffaCakes118

Files

3bae96b4dc432bbaa618c3842d648f3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad2242aacb0fce1bcd55261ce0ca0a62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegQueryInfoKeyA
RegGetKeySecurity
RegCreateKeyExA
RegCreateKeyExW
RegQueryValueA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyW
RegEnumKeyW
RegQueryValueExA
RegEnumValueA
RegOpenKeyExA
RegEnumKeyExA

kernel32

ReadConsoleA
GetLastError
ReadFile
CreateThread
CopyFileW
GetFileTime
DeleteAtom
WriteFile
CopyFileExA
ExitThread
GetCPInfo
OpenFileMappingA
GetStdHandle
Sleep
CreateDirectoryA
GlobalFree
DeleteFileA
GetStdHandle
DeleteAtom
GetComputerNameA
SetLastError
DeleteFileA
GetFileTime
GetConsoleMode
CreateDirectoryA
ReadFile
GetFileSize
OpenFileMappingA
ExitThread
CopyFileExW
FindFirstFileA

user32

DialogBoxParamA
AppendMenuW
GetWindowTextA
GetWindowTextLengthA
CopyImage
CalcMenuBar
BlockInput
IsMenu
DrawIcon
IsWindow
DialogBoxParamW
CloseWindow
AppendMenuA
AlignRects

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ahdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad2242aacb0fce1bcd55261ce0ca0a62

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 4KB - Virtual size: 2KB

.ahdata Size: 52KB - Virtual size: 48KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 2KB

.edata Size: 4KB - Virtual size: 29KB

.text
Size: 4KB - Virtual size: 2KB

.ahdata
Size: 52KB - Virtual size: 48KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 2KB

.edata
Size: 4KB - Virtual size: 29KB