558d751a662db0ad7a02bcbb5880020c_JaffaCakes118

General

Target

558d751a662db0ad7a02bcbb5880020c_JaffaCakes118
Size

34KB
MD5

558d751a662db0ad7a02bcbb5880020c
SHA1

bbe589cbc9ba44da94e03ec7a86c39615f2f1e10
SHA256

d1ef4f194b6e3a38af0ac5238aeb9a56f6fcdf3dc454b807b5740b8641df2404
SHA512

74d2103c6bd6062bc0d1213e745370e6963146b467c19b2c611a36f58cd2de00e8ff3fcd59a95cfbd559929b237e7cdee5684f4f385bdcb8f78a2da556204289
SSDEEP

768:tYZf+choMMRSm7iMrDOzDDCXNIsk5GOgeqxjaJ3q2/D59ha:CZf+3BRSFMr8C9JBUhqwlL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
558d751a662db0ad7a02bcbb5880020c_JaffaCakes118

Files

558d751a662db0ad7a02bcbb5880020c_JaffaCakes118
.exe windows:3823 windows x86 arch:x86

0c4ad2f2df111279e6d0d6cb8e24f1e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
GetModuleFileNameA
GetTickCount
GetProcAddress
VirtualAlloc
WideCharToMultiByte
TerminateProcess
GetTickCount
UnhandledExceptionFilter
WideCharToMultiByte
GetCurrentThreadId
MultiByteToWideChar
SetUnhandledExceptionFilter
WaitForSingleObject
InterlockedIncrement
LocalAlloc
VirtualAlloc
GetLastError
GetLastError
GetModuleFileNameA
SetEvent
GetProcessHeap
GetSystemTimeAsFileTime
VirtualAlloc
VirtualAlloc
SetLastError
GetLastError
lstrlenW
TerminateProcess
GetProcAddress
GetProcAddress
SetLastError
GetLastError
SetFilePointer
lstrlenW

user32

ShowWindow
GetDlgCtrlID
PeekMessageW
wsprintfA
EndDialog
MessageBoxA
DestroyIcon
DefWindowProcW
GetMessageW
SetFocus
GetSystemMenu
InvalidateRect
SystemParametersInfoW
wsprintfW
GetDC
GetParent
EnableWindow
GetWindowTextW
EndPaint
WinHelpW
SendMessageA
ScreenToClient
TranslateMessage
GetWindowRect
CallWindowProcW
DispatchMessageA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c4ad2f2df111279e6d0d6cb8e24f1e9

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 13KB - Virtual size: 48KB

.rdata Size: 2KB - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 13KB - Virtual size: 48KB

.rdata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB