3d72d220447cd0d077477e8b6ee641ac_JaffaCakes118

General

Target

3d72d220447cd0d077477e8b6ee641ac_JaffaCakes118
Size

59KB
MD5

3d72d220447cd0d077477e8b6ee641ac
SHA1

8f5c1bc1a3a6bc1f6f127ce4d9e574e0d0c622ea
SHA256

d364c0c1370884fa086c16e329c4501a5e5a14ef0902ea3439b27e2f1030e42e
SHA512

b5c38fa2c931525cc71e5f4dec90a2b9f7d24321b1f29a5fc50f3b0442f586fb0ed20c8d266bfc76e5916f4c8cf81d9f6fb3f277882a759c388c28b53646e0c6
SSDEEP

1536:EMrP3pTcKrBjowSOzMrPcZowuteC+80rhpGs2Z+TK:bvDr7SEAPcZo/tG86GDZh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d72d220447cd0d077477e8b6ee641ac_JaffaCakes118

Files

3d72d220447cd0d077477e8b6ee641ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b14a6b5f618432c4bfb320cfb1257d3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RegisterConsoleIME
WaitNamedPipeW
ResetEvent
ScrollConsoleScreenBufferA
FillConsoleOutputCharacterW
GetConsoleProcessList
SetFileTime
GetExitCodeProcess
GetSystemWow64DirectoryA
IsBadReadPtr
SetConsoleHardwareState
GetProcAddress
ExpandEnvironmentStringsA
LoadLibraryA
FindAtomW
ReadProcessMemory
DebugSetProcessKillOnExit
CreatePipe
TryEnterCriticalSection
LocalLock
ReadConsoleOutputCharacterW
ClearCommBreak
SetConsoleWindowInfo
BaseQueryModuleData
GetComPlusPackageInstallStatus
GetProcessHeap
CreateProcessW
SetComputerNameExA
LocalSize
IsBadHugeWritePtr
GetConsoleInputWaitHandle
ReadFileScatter
GetConsoleCommandHistoryLengthW
LoadLibraryExW
WriteProfileSectionW
GetPrivateProfileStringW
GetComputerNameExW
EnumSystemLanguageGroupsW
BaseCleanupAppcompatCacheSupport
FindFirstChangeNotificationW
WritePrivateProfileStringA
HeapValidate
GetLongPathNameW
GetLogicalDrives
GetConsoleOutputCP

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b14a6b5f618432c4bfb320cfb1257d3e

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 2KB - Virtual size: 4KB

.rdata Size: 45KB - Virtual size: 48KB

.data Size: 6KB - Virtual size: 8KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 2KB - Virtual size: 4KB

.rdata
Size: 45KB - Virtual size: 48KB

.data
Size: 6KB - Virtual size: 8KB

.rsrc
Size: 5KB - Virtual size: 8KB