53280fae9be208f7057db209ab8a3f46_JaffaCakes118

General

Target

53280fae9be208f7057db209ab8a3f46_JaffaCakes118
Size

253KB
MD5

53280fae9be208f7057db209ab8a3f46
SHA1

3c14c62af4cf8e17b3956c6a845b83a6a34c76ee
SHA256

0248ffb72eda854f26a3f74f8c4bd1853ca3ff95aac81342f3491e58d28895e3
SHA512

66a54be003e9299367cc22482d51cdfb87b460e8d43065677995022b269189984d28221b389a9e0c4f2e921697e9e5771ec0d8fcd075c20c0ebcbe49d758a77b
SSDEEP

6144:Rww8lLYUgswcz/3MqqlvL3cTdOAtqLpzZEiMu2uer/GselGZHD6CaE7hjsv9unQ:+Htg5g/3clj3cbUtzOYbGgCtsve

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53280fae9be208f7057db209ab8a3f46_JaffaCakes118

Files

53280fae9be208f7057db209ab8a3f46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8544a4702ef2764352b275ff5220e40b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
SetLastError
TlsFree
WritePrivateProfileStringW
GetProcAddress
TlsGetValue
HeapReAlloc
UnhandledExceptionFilter
GetDiskFreeSpaceExW
GetStdHandle
GetCurrentProcessId
HeapAlloc
InterlockedCompareExchange
GetCommandLineA
GetVersion
GetModuleHandleA
TlsSetValue
GetCurrentThread
LocalLock
InterlockedExchange
GetEnvironmentStringsW
LeaveCriticalSection
VirtualAllocEx
IsBadWritePtr
VirtualFree
GetLogicalDrives
GetStartupInfoA
CreateMutexA
EnumResourceNamesA
ExitProcess
GetTickCount
TransmitCommChar
MultiByteToWideChar
HeapFree
DeleteCriticalSection
GetModuleFileNameA
HeapDestroy
LoadLibraryA
QueryPerformanceCounter
CreateFileA
VirtualAlloc
LocalSize
EnumSystemCodePagesW
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
EnterCriticalSection
GetCommandLineW
GetLastError
GetStartupInfoW
OpenWaitableTimerW
TlsAlloc
GetFileAttributesA
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
CreatePipe
GetTimeFormatA
FreeEnvironmentStringsW
GetEnvironmentStrings
SetLocalTime
EnumResourceTypesW
WriteFile
InitializeCriticalSection
GetShortPathNameW
GetFileType
lstrcmpi
GlobalAddAtomW
SetHandleCount
SetStdHandle
GetModuleFileNameW

shell32

SHGetFileInfoA

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8544a4702ef2764352b275ff5220e40b

Headers

File Characteristics

Imports

kernel32

shell32

Sections

.text Size: 116KB - Virtual size: 115KB

.data Size: 131KB - Virtual size: 130KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 116KB - Virtual size: 115KB

.data
Size: 131KB - Virtual size: 130KB

.rsrc
Size: 5KB - Virtual size: 4KB