18cb55a64c3363cfe70a7fc159782aba_JaffaCakes118

General

Target

18cb55a64c3363cfe70a7fc159782aba_JaffaCakes118
Size

30KB
MD5

18cb55a64c3363cfe70a7fc159782aba
SHA1

97205341701d43e31bb98bc1a85aa4d13cda1bd8
SHA256

6ae24e5debecc93992faa3746ac96b7cce17e4660afd6ca4bcda8d12279bdc0c
SHA512

b9df0576d3e1984e411022f22d37a8d95601979245f2575520b71d43a33c7aeae14371e032b7b1d8402dd3492feb7dcfc4b467104f8777878e0a9392d8c798e6
SSDEEP

384:+SraZwMOMfVpqmTjsuU/q2sdtbXpKASlUP2fadAT7Zb4LAljoBEQY1+8OctFy+RW:+Sry7XGIsXq2sdtbXpKA6Xn5FFlFywH2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18cb55a64c3363cfe70a7fc159782aba_JaffaCakes118

Files

18cb55a64c3363cfe70a7fc159782aba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b65d51edfa5b05cf521611bcbc4a6c3c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
ExitProcess
GetStartupInfoA
SetCommConfig
WriteConsoleInputW
SetConsoleNumberOfCommandsW
CancelDeviceWakeupRequest
GetStartupInfoA
SetConsoleCursorPosition
GetCommModemStatus
GetPrivateProfileStringW
GetPrivateProfileSectionA
MulDiv
GetConsoleScreenBufferInfo
OutputDebugStringW
FindFirstVolumeA
GetShortPathNameA
GetProfileStringA
OpenEventA
BuildCommDCBA
GetDefaultCommConfigW
ReplaceFile
GetComputerNameExW
GetExitCodeThread
TermsrvAppInstallMode
OpenFileMappingA
FindVolumeClose
DeleteFileW
lstrcmpi
CreateSemaphoreA
ResumeThread
SetComputerNameA
SetConsoleOS2OemFormat
RtlUnwind
SetLocaleInfoA
VirtualProtect
FlushConsoleInputBuffer
IsDBCSLeadByte
GetProfileSectionW
MoveFileWithProgressW
CreateMailslotW
RegisterWowBaseHandlers
EndUpdateResourceW
FindFirstVolumeA
Process32FirstW
GetWriteWatch
IsSystemResumeAutomatic

Sections

code
Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 22KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b65d51edfa5b05cf521611bcbc4a6c3c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

code Size: 4KB - Virtual size: 20KB

data Size: 22KB - Virtual size: 28KB

idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 784B

code
Size: 4KB - Virtual size: 20KB

data
Size: 22KB - Virtual size: 28KB

idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 784B