3c09a01ad658e87b77eb2bffb871c96c_JaffaCakes118

General

Target

3c09a01ad658e87b77eb2bffb871c96c_JaffaCakes118
Size

260KB
MD5

3c09a01ad658e87b77eb2bffb871c96c
SHA1

a2644147b591671fa24d324cea9f1c1d00592b28
SHA256

519db9cc8080b5b13c4ec1c3f6e2d375182a7e402ba6a6f39fa42c7feb9721d5
SHA512

01e947746729d2f84a55e16caab9d67d8fa8d8b7494cd90f6c44e46e58d1701c298ed4cf776cdf3fbd88e2fd508fa7ba2b58789f151c7c323541cfbc246c15c5
SSDEEP

6144:U5GJ5Ab9NWLmyngUSeht4CNf0BRDJoWK5kKxfaKz3r+:HJ5bP/t4kgq/5dCa+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c09a01ad658e87b77eb2bffb871c96c_JaffaCakes118

Files

3c09a01ad658e87b77eb2bffb871c96c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6d5c5f6605e4be15e095ffc8a3f26c4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
WriteFile
MultiByteToWideChar
GetCurrentThread
GetProcAddress
GetModuleFileNameW
HeapReAlloc
SetLastError
GetEnvironmentStrings
TlsGetValue
GetCurrentProcessId
HeapAlloc
DeleteCriticalSection
HeapDestroy
TlsSetValue
GetModuleHandleA
SetEndOfFile
WaitNamedPipeW
EnumResourceLanguagesA
InterlockedExchange
LeaveCriticalSection
FreeEnvironmentStringsA
GetFileType
IsBadWritePtr
GetCommandLineA
GetDateFormatA
TlsAlloc
OpenFileMappingW
GetShortPathNameW
ExitProcess
GetTickCount
IsValidLocale
CreateToolhelp32Snapshot
HeapFree
GetStartupInfoW
GetModuleFileNameA
VirtualFree
LoadLibraryA
QueryPerformanceCounter
GetStartupInfoA
VirtualAlloc
GetCommandLineW
GetEnvironmentStringsW
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetStdHandle
InitializeCriticalSection
SetHandleCount
TlsFree
OpenSemaphoreA
EnterCriticalSection
GetLastError
GetSystemTimeAsFileTime
GetVersion
FreeEnvironmentStringsW
HeapLock
HeapCreate

gdi32

SetMetaRgn
CreateEnhMetaFileA

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d5c5f6605e4be15e095ffc8a3f26c4d

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 118KB - Virtual size: 117KB

.data Size: 132KB - Virtual size: 131KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 118KB - Virtual size: 117KB

.data
Size: 132KB - Virtual size: 131KB

.rsrc
Size: 9KB - Virtual size: 9KB