520b19fa22fe7c8937a2136a5db71492_JaffaCakes118

General

Target

520b19fa22fe7c8937a2136a5db71492_JaffaCakes118
Size

40KB
MD5

520b19fa22fe7c8937a2136a5db71492
SHA1

fcf69989cafb916650924137481ee288ef5a2cd1
SHA256

a3ecd8580cc3b126a34f0dcc0a67f1b6fce5c2fbbeab4e1262b355aa7df887e2
SHA512

51b1b67298f661b4c1efd03f5b8cb587b73e90a574fa2a074dce6b79e3f85cf3bcd16e1ea5e89c7ee8b13aaaa6b1a6424cd5d7bd38abe2721e268c7d275ee09f
SSDEEP

768:CMa2T0KXZcvL7fREv3gLnhHhdGgsS/h5nAnmj2kxysdbEM3VtjC65+3:CGYLVEvChHhLsSZiny2kxRdbEMFV5a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
520b19fa22fe7c8937a2136a5db71492_JaffaCakes118

Files

520b19fa22fe7c8937a2136a5db71492_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54f4a257408e63bd738343ac248c80a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindAtomA
CreateThread
CreateMutexA
GetModuleFileNameA
CreateWaitableTimerW
GetModuleHandleExA
GetACP
GetNumberFormatA
TlsAlloc
CreateActCtxA
DosDateTimeToFileTime
GetTimeZoneInformation
lstrcatW
GetEnvironmentVariableW
GetFileAttributesW
ConvertDefaultLocale
FormatMessageW
GetAtomNameA
GetLongPathNameA
FatalExit
FileTimeToSystemTime
GetCurrentDirectoryW
GetProfileStringW
EnumDateFormatsA
GetLongPathNameW
VirtualProtect
GetModuleHandleA

user32

ReleaseDC
EnableWindow
EndDialog
GetDesktopWindow
PostMessageA
InvalidateRect
KillTimer
SetCursor
CharNextW
EndPaint
ShowWindow
SendDlgItemMessageA
SetWindowTextW
GetFocus
SendMessageA
DispatchMessageW
GetDlgItemTextW
SetDlgItemTextA
wsprintfA
CreateWindowExW
PeekMessageA
SendDlgItemMessageW
GetSystemMetrics
SetForegroundWindow
wsprintfW
IsDlgButtonChecked
GetDC
SetWindowLongW
PostMessageW
SendMessageW
LoadStringW
CharNextA
IsChild

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54f4a257408e63bd738343ac248c80a9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 21KB - Virtual size: 21KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 1KB - Virtual size: 1KB