40ea4a6d5cec37b7d5ddc3bf0cd09bbe_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

40ea4a6d5cec37b7d5ddc3bf0cd09bbe_JaffaCakes118
Size

17KB
MD5

40ea4a6d5cec37b7d5ddc3bf0cd09bbe
SHA1

c2f97b94c07a56285897b1ca6d9859f6bab46801
SHA256

ef3f00541693c85ae67c568d82469f428b144b60fbca7fddd383730bbcc41d3c
SHA512

36e24b90937eff2e4f2e5898a2c894a1ef2c8cbf69a5f17f154537d5964542f52516fbfa699565ac9d69cbb3647c885a250d6fa21ad194eff567d595acd36221
SSDEEP

384:Gc47jE+l/GJzBCAERpSdz0kiZt2cQVMNvtw8P/mET4bmu:GcSjJ/GJ1Cxuz0kiiuwa/mEMmu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40ea4a6d5cec37b7d5ddc3bf0cd09bbe_JaffaCakes118

Files

40ea4a6d5cec37b7d5ddc3bf0cd09bbe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

806f573364ff7849ecf623035e791116

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

gdi32

SetWindowExtEx

shell32

SHBrowseForFolderA

kernel32

GetLocaleInfoA
EnterCriticalSection
GetCurrentProcessId
GetTimeZoneInformation
GetModuleFileNameA
MoveFileA
HeapAlloc
GetProcAddress
LCMapStringA
GetExitCodeProcess
FlushFileBuffers
GetCurrentProcessId
GetCurrentProcess
TerminateJobObject
GetBinaryTypeA
SetStdHandle
ExitProcess
GetTempPathA
RemoveDirectoryA
HeapFree
LCMapStringW
TerminateProcess
InterlockedDecrement
GetFileAttributesA
GetExitCodeThread
GetModuleHandleA
GetStartupInfoA
InitializeCriticalSection
CreateProcessA
LoadLibraryA
GetConsoleMode
GetStringTypeA
IsDebuggerPresent
WriteConsoleA
GetTempFileNameA
RaiseException
SetHandleCount
GetConsoleCP
GetSystemPowerStatus
GlobalCompact
IsValidCodePage
GetProcessHeap
SetEndOfFile
FormatMessageA
WaitForSingleObjectEx
GetFileSize
GetCurrentThreadId
DeleteCriticalSection
ScrollConsoleScreenBufferW
GetConsoleOutputCP
RequestWakeupLatency
HeapSize
GetCommandLineA
LeaveCriticalSection
GetSystemTimeAsFileTime
UnhandledExceptionFilter
WriteConsoleW
SetUnhandledExceptionFilter
GetTickCount
SetInformationJobObject
GetVersionExA
GetStringTypeW
FindNextFileA
WritePrivateProfileStringA
GetStdHandle
GetFileType
GetLastError
CopyFileA

msvcrt

__p__commode
__set_app_type
_except_handler3
_controlfp
__p__fmode
__setusermatherr

user32

UpdateWindow
CreateWindowExW
DefWindowProcW
DestroyWindow
SetDlgItemTextW
ValidateRect
GetDlgItem
ShowWindow
SetWindowLongW
PostQuitMessage
ValidateRgn

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 4KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

806f573364ff7849ecf623035e791116

Headers

DLL Characteristics

File Characteristics

Imports

version

gdi32

shell32

kernel32

msvcrt

user32

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 5KB - Virtual size: 9KB

.rsrc Size: 2KB - Virtual size: 2KB

BSS Size: 4KB - Virtual size: 59KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 5KB - Virtual size: 9KB

.rsrc
Size: 2KB - Virtual size: 2KB

BSS
Size: 4KB - Virtual size: 59KB