2660a513c5f5cedc6a93ef5d2db494d0_JaffaCakes118

General

Target

2660a513c5f5cedc6a93ef5d2db494d0_JaffaCakes118
Size

69KB
MD5

2660a513c5f5cedc6a93ef5d2db494d0
SHA1

d43fdbaa329d90e669340919e1a3623b0a5ab60a
SHA256

2249b2d09768b382f59e3af57908b60631832998c3195921c91b8be71d2a9a43
SHA512

f28829b37a27d06f3e7638197c3071e89c1e55ec120a12d359b0e9914a5dbba4906ab49c6ceef5802b83dcc999879a492dda4f188ec45c680619a64ec88457b6
SSDEEP

1536:PDusJu7XAqjh+5rlM6smCoTEFoCVmeHEM0ZF8otV1B8H:7hywqj+Zhsml0sVM6v0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2660a513c5f5cedc6a93ef5d2db494d0_JaffaCakes118

Files

2660a513c5f5cedc6a93ef5d2db494d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9ebb8b95b36cb519f1962dd072311db7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
SetInformationJobObject
TransactNamedPipe
NlsGetCacheUpdateCount
GetConsoleInputWaitHandle
GlobalSize
HeapLock
ReadFileEx
GetSystemTimeAsFileTime
GlobalSize
SetConsoleNlsMode
SetSystemPowerState
SetUnhandledExceptionFilter
GetEnvironmentStrings
SetConsoleMode
CloseHandle
lstrcmpi
GetConsoleNlsMode
CmdBatNotification
GetCommandLineA
GetStartupInfoA
ExitProcess
GetConsoleKeyboardLayoutNameA
WideCharToMultiByte
GetProcessVersion
ExpungeConsoleCommandHistoryA
SetInformationJobObject
BindIoCompletionCallback
SetConsolePalette
DeleteTimerQueue
GlobalUnfix
OpenProfileUserMapping
RequestWakeupLatency
GetDiskFreeSpaceA
GetExitCodeThread
SetTermsrvAppInstallMode
DeleteVolumeMountPointA
UnregisterWait
SetStdHandle
ReleaseMutex

Sections

.itext
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.date
Size: 46KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

Sharing

General

Malware Config

Signatures

Files

9ebb8b95b36cb519f1962dd072311db7

Headers

File Characteristics

Imports

kernel32

Sections

.itext Size: 4KB - Virtual size: 96KB

.date Size: 46KB - Virtual size: 52KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 16KB - Virtual size: 16KB

WEIJUNLI Size: - Virtual size: 4KB

.itext
Size: 4KB - Virtual size: 96KB

.date
Size: 46KB - Virtual size: 52KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 16KB - Virtual size: 16KB

WEIJUNLI
Size: - Virtual size: 4KB