43198c75277e26d4e6bf903748ef3bce_JaffaCakes118

General

Target

43198c75277e26d4e6bf903748ef3bce_JaffaCakes118
Size

413KB
MD5

43198c75277e26d4e6bf903748ef3bce
SHA1

a61cce9a032f7e27e4741d6466d4ca56a976de54
SHA256

519e086ac04290eb039e5d38faf383f28784bcdd4122883e0a900cc53d23f21e
SHA512

3062465d4fe24f84b4df701afd668b3be5cb748ec93dd40ebc50ce0ff7b157ef80a4a54c4921915056794c7cce112a681e118eed7a30f2fbc65cb1cda26eccd9
SSDEEP

6144:d7EUV5IfX/eSQI+s+V/wVQzd5Iz5Jzz3IvzOGEoCyYVt/qt+HtPJMjD4MtINcXg:d7D6P2RhVY+zdc5JX3ILVcJ7FtmDVFw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
43198c75277e26d4e6bf903748ef3bce_JaffaCakes118

Files

43198c75277e26d4e6bf903748ef3bce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ccc32b0d0386936112df0ded6ab39a5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
UnhandledExceptionFilter
WideCharToMultiByte
FreeEnvironmentStringsA
GetProcAddress
WriteFile
HeapReAlloc
TlsSetValue
FreeEnvironmentStringsW
LCMapStringW
GetCurrentProcessId
HeapAlloc
ReadConsoleOutputCharacterA
GetStartupInfoA
LeaveCriticalSection
GetModuleHandleA
DeleteFileA
RtlMoveMemory
lstrcmp
InterlockedExchange
GetStringTypeW
TlsFree
GetCPInfo
TlsAlloc
EnterCriticalSection
GetSystemTimeAdjustment
IsBadWritePtr
GetAtomNameA
EnumResourceNamesA
ExitProcess
GetTickCount
GetVersion
TlsGetValue
HeapFree
GetEnvironmentStringsW
GetModuleFileNameA
SetHandleCount
LoadLibraryA
QueryPerformanceCounter
GetEnvironmentStrings
VirtualAlloc
SystemTimeToFileTime
GetACP
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetFileType
GetStdHandle
HeapDestroy
LCMapStringA
GetDiskFreeSpaceExA
VirtualFree
GetCommandLineA
GetSystemTimeAsFileTime
GetLastError
DeleteCriticalSection
EnumTimeFormatsA
GetOEMCP
GetStringTypeA
WriteConsoleInputW
ReleaseMutex
InitializeCriticalSection
SetLastError
AddAtomW
HeapCreate
GetCurrentThread

comdlg32

GetOpenFileNameW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ccc32b0d0386936112df0ded6ab39a5f

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 103KB - Virtual size: 102KB

.data Size: 302KB - Virtual size: 301KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 103KB - Virtual size: 102KB

.data
Size: 302KB - Virtual size: 301KB

.rsrc
Size: 7KB - Virtual size: 7KB