407449906ff9fb9e016f8c6cb83bc1e9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

407449906ff9fb9e016f8c6cb83bc1e9_JaffaCakes118
Size

85KB
MD5

407449906ff9fb9e016f8c6cb83bc1e9
SHA1

4f72d4baa83568be8a30dd3685129a5852c6358f
SHA256

1e3e9fd892432fd7f9de90c210475c56af7f5277b2adf76c6d145f3d92ef373a
SHA512

e6fbc51059f19cb954d061c2b7665cf6bd4552887c5824f2ca0ac124982c168202d012d0379ab92851ad2f602e3fca71a51f1a787f372609b54195fb7886f1d3
SSDEEP

768:O7MFRPP2lV2URvNncFyhP1w81MkVLz6LPSCUlZupOxljUPYi4PYbeSUDmmWZ0oHa:JH6XruyhPiCzuHU3unPYi4gNpZ0ouPN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
407449906ff9fb9e016f8c6cb83bc1e9_JaffaCakes118

Files

407449906ff9fb9e016f8c6cb83bc1e9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90d7aa142c707a0b5ad58aaa6f02b079

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetCurrentThreadId
HeapAlloc
lstrcpynA
WriteFile
GetEnvironmentStrings
ReadFile
GetStdHandle
SetEvent
GetACP
MulDiv
SetErrorMode
WaitForSingleObject
ExitProcess
LocalReAlloc
LocalFree
LocalAlloc
GetLocaleInfoA
lstrcpyA
DeleteFileA
LockResource
GetCommandLineA
lstrlenA
ExitThread
lstrcatA
GetCurrentThread
GetStartupInfoA
MoveFileExA
GetLocalTime
GetProcAddress
LoadLibraryA
GetModuleFileNameA
FindClose
CreateEventA
CloseHandle
EnterCriticalSection
lstrcmpiA
RaiseException
GetTickCount
DeleteCriticalSection
VirtualAlloc
SetFilePointer
LoadResource
HeapFree
MoveFileA
CreateThread
GlobalDeleteAtom
GlobalFindAtomA
FindResourceA
GlobalAlloc
GetUserDefaultLCID
GetVersionExA
GlobalAddAtomA
HeapDestroy
GetCPInfo
GetFullPathNameA
GetVersion
FreeLibrary

user32

GetClassLongA
EnumThreadWindows
GetMessagePos
DrawEdge
DefFrameProcA
EndPaint
MessageBoxA
CharNextA
SetWindowPos
GetMenu
EnableWindow
FindWindowA
FillRect
DefWindowProcA
DispatchMessageA
GetSubMenu
GetMenuStringA
GetKeyState
DeferWindowPos
GetFocus
GetLastActivePopup
EnableScrollBar
ShowWindow
GetSysColor
GetSysColorBrush
SetCursor
GetMenuItemInfoA
DispatchMessageW
IsChild
EnumChildWindows
CreateIcon
GetWindow
EnableMenuItem
EqualRect
DrawIconEx
BeginDeferWindowPos
DrawIcon
CreateMenu

Sections

CODE
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90d7aa142c707a0b5ad58aaa6f02b079

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 6KB - Virtual size: 6KB

.data Size: 5KB - Virtual size: 25KB

.edata Size: 66KB - Virtual size: 65KB

BSS Size: 5KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 571B

CODE
Size: 6KB - Virtual size: 6KB

.data
Size: 5KB - Virtual size: 25KB

.edata
Size: 66KB - Virtual size: 65KB

BSS
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 571B