4646f1df1c7ea12a4d029bae58a82a65_JaffaCakes118

General

Target

4646f1df1c7ea12a4d029bae58a82a65_JaffaCakes118
Size

80KB
MD5

4646f1df1c7ea12a4d029bae58a82a65
SHA1

f04406f2f3ef1c6a2f7e4810b0c1cef1dadcba26
SHA256

57ea82461f1a004c7f03c6b6805d16a8f5dbaeebd533265487b1f9f72656cf35
SHA512

fe7034000bf07f70f337219e7d1478df67dd69f02d7c7132ffc43d300aae0b269e3a86f7dc8154be936eb4671de3e90fa3cfca87477a5564f71c3051a5370515
SSDEEP

1536:l7/c3G2761plaoYOHGFCpFhvMj6eNwHWBlZL4F6:ljg4laoYZF8FRM5Nh4Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4646f1df1c7ea12a4d029bae58a82a65_JaffaCakes118

Files

4646f1df1c7ea12a4d029bae58a82a65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

701a7de39a669b4d971f167b66bc4619

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerLanguageNameA
GlobalAlloc
SetFileAttributesA
CloseHandle
lstrcatA
GetFileSizeEx
GetFileSize
OutputDebugStringA
lstrcmpA
GetUserDefaultLangID
CompareStringA
GetProcAddress
LoadLibraryA
RaiseException
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetThreadLocale
GetCPInfo
SetFilePointer
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetLastError
GetFileAttributesA
TerminateProcess
GetCurrentProcess
GetFileType
GetCurrentProcessId
HeapAlloc
HeapFree
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
SetStdHandle
FlushFileBuffers

user32

LoadCursorFromFileA
IsWindow
FlashWindowEx
wsprintfA
SetRect
MessageBoxA
CreateWindowExA
CloseWindow
LoadCursorA
RegisterHotKey

gdi32

CreateRectRgn
CreateHatchBrush
CreateCompatibleDC

comdlg32

GetOpenFileNameA

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

701a7de39a669b4d971f167b66bc4619

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 41KB - Virtual size: 41KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 41KB - Virtual size: 41KB