3e10ec4d3f3130b4b1379ca9eac19285_JaffaCakes118

General

Target

3e10ec4d3f3130b4b1379ca9eac19285_JaffaCakes118
Size

30KB
MD5

3e10ec4d3f3130b4b1379ca9eac19285
SHA1

63d5812ada14130f4593a96e148043a3a71bca10
SHA256

c5972ac20f1c181051e2c75c14a2bfecca4a71d13dee3f6f4b0c7efcc21dc13e
SHA512

19511bb04690f28bc8e7cd160aed885d62935958e210478349b252f632e1a301e18a4f95341c614f86773d9baaf790a7f715953a6c2f9b20f2e3d715c86ed070
SSDEEP

768:oGBOmDZZYJlTJqcKqdUEOYXKJEzIxGuq2/D592:oGBdZZATBKqdUnwKBGuqwlI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e10ec4d3f3130b4b1379ca9eac19285_JaffaCakes118

Files

3e10ec4d3f3130b4b1379ca9eac19285_JaffaCakes118
.exe windows:57812 windows x86 arch:x86

5ef3ff8e6f3bb21a50e0458bf02647ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
HeapFree
SetUnhandledExceptionFilter
VirtualFree
InitializeCriticalSection
VirtualAlloc
Sleep
HeapReAlloc
VirtualAlloc
GetCommandLineA
WaitForSingleObject
lstrlenW
ReadFile
SetFilePointer
HeapFree
InterlockedDecrement
InterlockedIncrement
WriteFile
HeapFree
WideCharToMultiByte
Sleep
CreateFileW
LoadLibraryA
LocalAlloc
HeapFree
LeaveCriticalSection
CloseHandle
GetCurrentThreadId
SetLastError
FreeLibrary
Sleep
LocalAlloc
Sleep
GetCommandLineA
GetTickCount
VirtualAlloc
GetCommandLineW
GetStartupInfoW
LocalFree
GetCommandLineW
CloseHandle
VirtualAlloc
GetACP
CreateThread

user32

DestroyWindow
ScreenToClient
PeekMessageW
WinHelpW
ShowWindow
KillTimer
OffsetRect
SendMessageA
GetDesktopWindow
MapWindowPoints
EnableWindow
GetSystemMetrics
DestroyWindow
ReleaseCapture
UpdateWindow
GetDesktopWindow
ReleaseCapture
GetFocus
DrawTextW
WinHelpW
SetForegroundWindow
ReleaseCapture
LoadCursorW
GetSysColor
SetRect
SetWindowPos
DestroyMenu
OffsetRect
DispatchMessageW
CreateDialogParamW
DrawTextW
CreateDialogParamW
wsprintfW
GetParent
MapWindowPoints
SetCursor
IsWindow
EnableMenuItem
GetDesktopWindow
PostQuitMessage
CopyRect
SetTimer
PostQuitMessage

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ef3ff8e6f3bb21a50e0458bf02647ba

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 13KB - Virtual size: 48KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 13KB - Virtual size: 48KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB