f6981924c94b44bf64b9ccaa9ba56f65_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f6981924c94b44bf64b9ccaa9ba56f65_JaffaCakes118
Size

89KB
MD5

f6981924c94b44bf64b9ccaa9ba56f65
SHA1

f4baf3cd6647f4e0f9d7b509886cd927f0d74a98
SHA256

22e5c095b3620049cd41614a8bc2e1b45bb6ccb513f69ae1acff03e31541681b
SHA512

1c6e8ea5479b08ba02bd94a2a5a46d57404f4e32577c788ee6aa835ac96607ea5e1b9a7bbc8cc64b82420aea6ace3773932eed13676f14f76e6e37d7c5f2e1e3
SSDEEP

1536:7xLpQdC1d6utrFRgNQOeqHAcarRYoDpTyAEH9ulUP2zVdn1IoC:7xL2s1d6mrJOOrrOseH9NezVcoC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6981924c94b44bf64b9ccaa9ba56f65_JaffaCakes118

Files

f6981924c94b44bf64b9ccaa9ba56f65_JaffaCakes118
.exe windows:5 windows x86 arch:x86

51d210efef01f98a3a2bbb2a01eac5f2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cmdial32

AutoDialFunc

kernel32

SetConsoleCtrlHandler
HeapCreate
GetModuleHandleA
FreeLibrary
GetFileType
UnhandledExceptionFilter
DisableThreadLibraryCalls
IsBadWritePtr
IsDBCSLeadByte
InterlockedDecrement
VirtualFree
EnterCriticalSection
TlsSetValue
SetLastError
TlsAlloc
lstrcmpiA
GetStartupInfoA
InitializeCriticalSection
IsBadCodePtr
GetCurrentThreadId
GetStringTypeW
FreeEnvironmentStringsW
LCMapStringW
LoadLibraryExA
lstrlenW
GetVersion
FreeEnvironmentStringsA
LoadLibraryA
LeaveCriticalSection
lstrlenA
GetOEMCP
SetHandleCount
GetCommandLineA
DeleteCriticalSection
InterlockedIncrement
VirtualAlloc
GetLastError
LCMapStringA
GetProcAddress
GetCPInfo
TerminateProcess
IsBadReadPtr
GetCurrentProcess
TlsGetValue
HeapAlloc
GetEnvironmentStringsW
GetACP
HeapReAlloc
lstrcpyA
GetModuleFileNameA
RtlUnwind
lstrcpynA
HeapDestroy
GetStringTypeA
SetUnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
lstrcatA
WriteFile
FatalAppExitA
GetStdHandle
ExitProcess
FindResourceA
SizeofResource
TlsFree
GetShortPathNameA
LoadResource
HeapFree
GetEnvironmentStrings
GetCurrentThread

adsnt

DllGetClassObject

dataclen

DllGetClassObject

Sections

.text
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

51d210efef01f98a3a2bbb2a01eac5f2

Headers

DLL Characteristics

File Characteristics

Imports

cmdial32

kernel32

adsnt

dataclen

Sections

.text Size: 512B - Virtual size: 420B

.rsrc Size: 12KB - Virtual size: 11KB

.idata Size: 2KB - Virtual size: 2KB

.data Size: - Virtual size: 80KB

.rdata Size: 73KB - Virtual size: 76KB

.text
Size: 512B - Virtual size: 420B

.rsrc
Size: 12KB - Virtual size: 11KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 80KB

.rdata
Size: 73KB - Virtual size: 76KB