2afdd4285137372ec10b05227e46fac3_JaffaCakes118

General

Target

2afdd4285137372ec10b05227e46fac3_JaffaCakes118
Size

96KB
MD5

2afdd4285137372ec10b05227e46fac3
SHA1

efe289b0e3d3d8ede79111990e2f96aa4eddda25
SHA256

0fc3b4bf9d9af7dee13436f767c062ad3dcc200b5d48c0c7807b5dee4fe78523
SHA512

eba734efbff6d4bcffc23e2f916504cc0b35c8be7df4fe3d9619c3d8ffe59092fe967a5e6e63d172da43d9b43aeb681e2c6bf44c0435bd61bb86bea8d25c8353
SSDEEP

1536:sQqfWb08Uo0G5CPpcZmWGadDViow9B5xU3AU1Mp8cIs/YQdsOEQaPOj+c:sVfWb0f1CCPpcZvLDVioApU3xM2mvdLY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2afdd4285137372ec10b05227e46fac3_JaffaCakes118

Files

2afdd4285137372ec10b05227e46fac3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7aaa6d4cae4cbeeab3b4d693f553526

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
CloseHandle
SetCommBreak
PulseEvent
HeapUnlock
ConsoleMenuControl
GetCalendarInfoA
OpenThread
IsValidLanguageGroup
ReadConsoleInputExA
ReadConsoleInputExA
CreateTimerQueue
VDMConsoleOperation
GetDefaultCommConfigA
GlobalUnlock
NlsGetCacheUpdateCount
GetEnvironmentStrings
GetWindowsDirectoryA
FindFirstFileA
FindFirstVolumeMountPointA
GetCommandLineA
GetStartupInfoA
ExitProcess
GetVolumePathNameA
SetErrorMode
GetUserDefaultLCID
SetConsoleFont
GetProcessIoCounters
SetConsoleWindowInfo
InterlockedDecrement
IsBadStringPtrA
ConsoleMenuControl
GetConsoleScreenBufferInfo
GetProcAddress
SetFilePointer
GetPrivateProfileSectionNamesA
VirtualUnlock
CreateJobObjectA
GetWriteWatch
OpenWaitableTimerA
SystemTimeToFileTime
SetConsoleNumberOfCommandsA
SetPriorityClass
SetStdHandle

Sections

.itext
Size: 4KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.date
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

WEIJUNLI
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

Sharing

General

Malware Config

Signatures

Files

e7aaa6d4cae4cbeeab3b4d693f553526

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Sections

.itext Size: 4KB - Virtual size: 96KB

.date Size: 80KB - Virtual size: 80KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 4KB

WEIJUNLI Size: - Virtual size: 4KB

.itext
Size: 4KB - Virtual size: 96KB

.date
Size: 80KB - Virtual size: 80KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 4KB

WEIJUNLI
Size: - Virtual size: 4KB