0f55678deaca5c319c834570030a55a8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f55678deaca5c319c834570030a55a8_JaffaCakes118
Size

63KB
MD5

0f55678deaca5c319c834570030a55a8
SHA1

b9bfe86fd11aff8ee2b1223cca89837cb6ffc538
SHA256

8005f928bac5b920c0bc45b142d1ebff7d039cd805e7a7e5b84a687f472edf40
SHA512

adddfcbe92d17a7dc1617c76ebac5d1bce579fad9b124046182d42d933c9d8291041b828afef750076e6d46295e350731dc7dcca5266f450d0b564230f2daab5
SSDEEP

1536:tjhXi/7djZsRMhT8XwhlYxGFgTd0mJbwzt9yrva:tjADdjoMhYXwsDTd0mtw59eva

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f55678deaca5c319c834570030a55a8_JaffaCakes118

Files

0f55678deaca5c319c834570030a55a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fcf421d894541d03cb33d12501777bdb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

SetConsoleCursorMode
SetFileValidData
GetDefaultCommConfigA
PeekConsoleInputA
lstrcpy
GetDiskFreeSpaceExA
CopyFileExW
GetWindowsDirectoryA
SetFileShortNameA
OpenFileMappingW
GetVolumeInformationA
GetConsoleCommandHistoryA
SetThreadIdealProcessor
FatalAppExitW
HeapCreate
GetConsoleAliasExesW
GetModuleFileNameA
VirtualAlloc
GetThreadSelectorEntry
ClearCommBreak
WriteConsoleOutputAttribute
MapViewOfFile
SetCalendarInfoA
VirtualProtectEx
OpenSemaphoreA
ExitThread
FindFirstChangeNotificationA
GetProcessHandleCount
LZDone
ReplaceFileA
GetCommMask
ReadFileEx

user32

GetDoubleClickTime
SendNotifyMessageA
IsDialogMessage
BroadcastSystemMessageExA
EnumDisplaySettingsExW
GetProgmanWindow
GetRawInputData
CreateIconFromResourceEx
GetKeyboardLayout
ChildWindowFromPointEx
BeginDeferWindowPos
EnumDisplaySettingsExA
GetWindowModuleFileNameA
DlgDirSelectComboBoxExA
CheckDlgButton
GetGuiResources
GetMenuState
LoadCursorA
GetAppCompatFlags2
TrackMouseEvent
IsDialogMessageA
ChildWindowFromPoint
DrawEdge
GetMouseMovePointsEx

Exports

Exports

AddYauorvsmubc
Gnalmdwaqaa
CreateSqixacluqqy
Vpqebdgucio
CloseXamnjvpg
Tinoupmr
OpenTxcgaep

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 224KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcf421d894541d03cb33d12501777bdb

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.itext Size: 1KB - Virtual size: 1KB

.data Size: 28KB - Virtual size: 28KB

.bss Size: - Virtual size: 224KB

.idata Size: 2KB - Virtual size: 1KB

.rdata Size: - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 22KB - Virtual size: 21KB

.itext
Size: 1KB - Virtual size: 1KB

.data
Size: 28KB - Virtual size: 28KB

.bss
Size: - Virtual size: 224KB

.idata
Size: 2KB - Virtual size: 1KB

.rdata
Size: - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 7KB