f4431715cb8917d6299c3fd8e4ecc607_JaffaCakes118

General

Target

f4431715cb8917d6299c3fd8e4ecc607_JaffaCakes118
Size

152KB
MD5

f4431715cb8917d6299c3fd8e4ecc607
SHA1

93d2efbaa4855c1aef3c92930880a9708a6dcf6a
SHA256

5e45ccd2b6bfeb5cbe8cd04c5805e6be583c660627d5d8fd6b878ffe623ef00e
SHA512

bcb64eafee4c13b18ef341581caf8f3c2f9cd49858cc03392daca982d873d418c8bc89436b92d1076b71b86c5d3e21b9f4609b37cd2786cd387d38168deaf266
SSDEEP

3072:diZWvizd9gdc6NNs7E6rMmQIBdNp8hqHLU5bnLDNINaydsU:di9J9gdlQXWwqhqrAPKh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4431715cb8917d6299c3fd8e4ecc607_JaffaCakes118

Files

f4431715cb8917d6299c3fd8e4ecc607_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f4e1489b757769be1e70df5af6daf2c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualLock
GetConsoleTitleA
GetCurrencyFormatA
ReadConsoleInputA
SetCurrentDirectoryA
UnregisterWaitEx
GetProcessHeap
RequestDeviceWakeup
GetProcessShutdownParameters
RaiseException
lstrcatA
SetHandleInformation
SetComputerNameExA
WriteConsoleOutputCharacterA
CancelWaitableTimer
RemoveDirectoryA
HeapSize
RaiseException
FileTimeToDosDateTime
MapViewOfFileEx
IsBadReadPtr
HeapSummary
GetPrivateProfileStructA
OpenThread
LCMapStringA
UnregisterWait
FlushConsoleInputBuffer
VirtualAllocEx
GetCompressedFileSizeA
GetPrivateProfileStringA
SignalObjectAndWait
SetEvent
ResetEvent

wininet

FtpSetCurrentDirectoryW
InternetQueryDataAvailable
InternetCrackUrlA
InternetGetConnectedStateExA
ResumeSuspendedDownload
InternetUnlockRequestFile
FtpSetCurrentDirectoryW
FtpRemoveDirectoryW

Exports

Exports

Kvfvaqjci
Qqgyovtpsi
CreateHnuycqjdfus
EndLjjbquw
Mgcbmerfpcr
AddNyvunofglv
Tepiobhfty
Xffjcvugcn

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 140KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4e1489b757769be1e70df5af6daf2c4

Headers

File Characteristics

Imports

kernel32

wininet

Exports

Exports

Sections

.itext Size: - Virtual size: 1KB

.text Size: 140KB - Virtual size: 184KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.itext
Size: - Virtual size: 1KB

.text
Size: 140KB - Virtual size: 184KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB