5f184ee93debe5fd2dcc7cba431ee43d_JaffaCakes118

General

Target

5f184ee93debe5fd2dcc7cba431ee43d_JaffaCakes118
Size

812KB
MD5

5f184ee93debe5fd2dcc7cba431ee43d
SHA1

aa0990d1635babd5cf6255a2107cf42dff245068
SHA256

84bb577996cb6e300ad8d3f3777b944c95b55a61228738c3efe0bba563adc2f9
SHA512

37d2df5e1fe34be6a138f1ca2aa9f82c7293c6d235939034ec4656bbfcb09001809ce71709fe6e3e796eb20e1e55864763e78f470aeb2538c7eed14897200b6f
SSDEEP

12288:Z+j2jviL4RXd3vlbwApOCaGWgXq5/KbQ1QP42QTNsFgQEVvVypVh6VNT+yDY6u:UL4RXd3vlbHpWGWgU/KegvaXGSNu6u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f184ee93debe5fd2dcc7cba431ee43d_JaffaCakes118

Files

5f184ee93debe5fd2dcc7cba431ee43d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

019edae5f2a96792839efc2aa8541c81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetThreadPriorityBoost
SetConsoleOS2OemFormat
ReadConsoleOutputW
SetVolumeLabelW
SetStdHandle
FindAtomA
GetQueuedCompletionStatus
GetCompressedFileSizeA
SetComputerNameExA
CreateThread
WriteConsoleOutputCharacterW
SetFileAttributesW
OpenSemaphoreA
UpdateResourceW
CompareStringA
GetTempFileNameW
SetConsoleMenuClose
VirtualProtect
DuplicateConsoleHandle
OutputDebugStringA
ReadFileEx
CreateIoCompletionPort
CreateEventW
MulDiv
GetStringTypeA
ExitProcess
SetVolumeLabelA
GetCalendarInfoW
UnhandledExceptionFilter
GetPrivateProfileStructA
FillConsoleOutputCharacterA
EnumTimeFormatsW

user32

PostThreadMessageA
UserRealizePalette
IsCharLowerW
LoadStringW
EnumDesktopsW
GetMonitorInfoA
EndDeferWindowPos
SetClipboardData
CharLowerW
GetMenuItemID
CloseWindow
GetNextDlgGroupItem
GetMenuItemRect
PeekMessageA
LookupIconIdFromDirectoryEx
TrackMouseEvent
GetInputDesktop
GetWindowDC
LockWindowStation
SwitchToThisWindow
CallNextHookEx
GetWindowPlacement

Sections

.text
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 221KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

019edae5f2a96792839efc2aa8541c81

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 484KB - Virtual size: 484KB

.data Size: 221KB - Virtual size: 1.2MB

.rsrc Size: 105KB - Virtual size: 108KB

.text
Size: 484KB - Virtual size: 484KB

.data
Size: 221KB - Virtual size: 1.2MB

.rsrc
Size: 105KB - Virtual size: 108KB