3dc967829d0b00c360dfb8a373aa5660_JaffaCakes118

General

Target

3dc967829d0b00c360dfb8a373aa5660_JaffaCakes118
Size

781KB
MD5

3dc967829d0b00c360dfb8a373aa5660
SHA1

0f7572910b8ab86ed71a52f0a15505b5ecdfe86b
SHA256

d1cdd85e7d99520ed150d5c0b91348761d8c74f9c1ea95472d26425a05a28e17
SHA512

2ee5ede09b285212b32084ff602f0cc27dfe2113706a515755f5a34cd9c8c0336a8b2ee657a12d3780b3506cf484a511c463837c28627384f4fe69cfd5ba0298
SSDEEP

24576:goL72K3gOcHQTCUPv/QyS8UwGo7M95wmHy:gqaK3gjQd/xLU6ADwmHy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dc967829d0b00c360dfb8a373aa5660_JaffaCakes118

Files

3dc967829d0b00c360dfb8a373aa5660_JaffaCakes118
.exe windows:4 windows x86 arch:x86

431af36ee9b0afc33f119e643cf85cfc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

ReadFile
lstrcpyA
GetFileSize
HeapCreate
IsBadStringPtrW
GetModuleHandleA
CreateMutexA
GetLastError
IsValidLocale
FormatMessageA
GetCurrentDirectoryW
ReadConsoleA
ReadConsoleA
CloseHandle
GetFileTime
ReadConsoleA
ReleaseMutex
GetStartupInfoW
lstrcpyW
SetFileAttributesA
FindResourceA

msi

MsiAdvertiseProductA
MsiCreateRecord
MsiCloseHandle
MsiCloseAllHandles

user32

GetWindowTextA
IsZoomed
DispatchMessageA
IsCharLowerA
IsDialogMessageA
LoadCursorW
PostMessageW
GetWindowLongW
SetCursorPos
PeekMessageW
wsprintfW
SetFocus
IsWindow

wldap32

ldap_add

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 772KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text1
Size: 1024B - Virtual size: 263B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

431af36ee9b0afc33f119e643cf85cfc

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 20KB

.rsrc Size: 772KB - Virtual size: 2.1MB

.text1 Size: 1024B - Virtual size: 263B

.data1 Size: 512B - Virtual size: 224B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 20KB

.rsrc
Size: 772KB - Virtual size: 2.1MB

.text1
Size: 1024B - Virtual size: 263B

.data1
Size: 512B - Virtual size: 224B