4058dc968fa01128629c8d61952d06b2_JaffaCakes118

General

Target

4058dc968fa01128629c8d61952d06b2_JaffaCakes118
Size

400KB
MD5

4058dc968fa01128629c8d61952d06b2
SHA1

1781a6c77362b397917fd8e7345d770b49e477d1
SHA256

ee2d046b1067106783555193ea80dcaf6f6334ab92af977fd9622d49dfdbd6a7
SHA512

f07fbfdca0c247a92a058c701e83fcbfff0fdabd449a928b1722175b1f2de981d3f29969a723452696cb7fa66097df62aef2b46a0d7ef8f01ca96ae406bf5f41
SSDEEP

6144:WiHGiNmq9LKFX+aDe5/gZ08MKeWfjtW5HooAsroKHRCGFBp4CjiZ1mL/ZG6FUCWv:jr8NcgfjkOGo08GnpDBRG9TL694j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4058dc968fa01128629c8d61952d06b2_JaffaCakes118

Files

4058dc968fa01128629c8d61952d06b2_JaffaCakes118
.exe windows:2453 windows x86 arch:x86

953a9420c688a40ba23625b87c06b7f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
GetSystemTimeAsFileTime
VirtualAlloc
HeapAlloc
GetCommandLineA
InitializeCriticalSection
DeleteCriticalSection
GetLastError
TerminateProcess
Sleep
lstrcmpiW
FreeLibrary
ReadFile
LoadLibraryA
GetCommandLineA
GetLastError
SetUnhandledExceptionFilter
SetEvent
SetLastError
WriteFile
SetFilePointer
VirtualFree
GetVersionExA
CreateThread
GetModuleHandleW
LoadLibraryW
CreateThread
TerminateProcess
GetACP
GetProcessHeap
FreeLibrary
lstrlenW
GetCommandLineW

user32

GetDlgCtrlID
LoadImageW
GetDlgItemTextW
DestroyIcon
GetDlgItemTextW
GetClientRect
SetCapture
GetParent
SetCursor
RegisterClassExW
DispatchMessageW
SendMessageA
IsIconic
SystemParametersInfoW
LoadIconW
SendMessageW
CopyRect
ReleaseDC
MessageBoxA
MapWindowPoints
DialogBoxParamW
ScreenToClient
LoadStringW
SetWindowPos
ReleaseDC
wsprintfA
PtInRect

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 388KB - Virtual size: 964KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

953a9420c688a40ba23625b87c06b7f1

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 388KB - Virtual size: 964KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 388KB - Virtual size: 964KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB