6457295fc1e3d08251f7268ec266e604_JaffaCakes118

General

Target

6457295fc1e3d08251f7268ec266e604_JaffaCakes118
Size

126KB
MD5

6457295fc1e3d08251f7268ec266e604
SHA1

e5a76c091c65b590522f3d25d74b37df9aa1add0
SHA256

530b78e7356b8d2ee46cdc94ec001ead7223fb9120baedfaf265fc11ec24c629
SHA512

5199ff2d9189dca5f834b90c89adc6419d30b4a1723ef826a29d15abfb952d10024c1104692113982deb5cb2d8f88a6a1c05d64926fda67cb824754aae9553b0
SSDEEP

3072:uOV5DcHw9VsTFY3WXlZslOgiSKEXTjxFODDSxJSOIuJwK9/nHdDWnYf406sIza:jDcQdGXHslhPp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6457295fc1e3d08251f7268ec266e604_JaffaCakes118

Files

6457295fc1e3d08251f7268ec266e604_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1111efeea5ffa0d89751f301ee636d3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
CommConfigDialogW
GetConsoleOutputCP
GetDevicePowerState
AreFileApisANSI
SetThreadLocale
GetStringTypeExW
EraseTape
GetOverlappedResult
TransmitCommChar
LoadLibraryW
CallNamedPipeA
GetFullPathNameW
GetCurrentDirectoryW
SetEnvironmentVariableA
GetNamedPipeHandleStateA
WaitNamedPipeW
OpenFile
SearchPathA
SetEndOfFile
WriteConsoleOutputCharacterA
GetWindowsDirectoryA
FreeConsole
GetTickCount
WriteFileEx
SetComputerNameW
OpenSemaphoreA
CommConfigDialogA
GetPrivateProfileSectionA
GetDefaultCommConfigW
InitializeSListHead
SetThreadAffinityMask
SetThreadIdealProcessor
DisableThreadLibraryCalls
GetCurrencyFormatA
GetOEMCP
Beep
MulDiv
RemoveDirectoryA
GetSystemDefaultUILanguage
FindFirstFileExW
ExpandEnvironmentStringsA
LoadLibraryExW
EnumCalendarInfoExA
GetFullPathNameA
GetPrivateProfileSectionW
CreateFiber
HeapQueryInformation
SetComputerNameA
BackupSeek
HeapWalk
GetSystemDefaultLangID
GetEnvironmentStrings
ExitThread
InterlockedPushEntrySList
WaitCommEvent
LeaveCriticalSection
WideCharToMultiByte
GetFileType
GetNumberOfConsoleMouseButtons
EndUpdateResourceW
CreateDirectoryW
GetTempPathW
SetCurrentDirectoryW
SetCalendarInfoW
GetVersionExW
GetCurrentProcess
WriteConsoleOutputW
HeapSetInformation
OpenFileMappingW
SetSystemTime
GetPriorityClass
DefineDosDeviceW
DeleteFileW
GetNumaHighestNodeNumber
SetSystemTimeAdjustment
Module32FirstW
HeapLock

Exports

Exports

SbBa
SbEbibj
SbEji
SbGjk
SbJmp
SbMjq
SbOjs
SbQju
SbWja
SbYjc

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1111efeea5ffa0d89751f301ee636d3f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 22KB - Virtual size: 23KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 22KB - Virtual size: 23KB