694f79ff19ff797846458adafaed4a05_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

694f79ff19ff797846458adafaed4a05_JaffaCakes118
Size

160KB
MD5

694f79ff19ff797846458adafaed4a05
SHA1

30ffdbef5a52da4f83f8f00e43a5a44b9aa4b633
SHA256

4653926001769e6074c9288b50fa42b1c10423d224a462422023e780b35dfb1a
SHA512

a067fca98dcde7445ac31172272fd1fda369d937f2455bf28a39375aa2d40498bad6503afe462e0f0cd9057447ea09694b6f049ab84c0b1b6a44378295c7ce7b
SSDEEP

3072:i2ePa6GnZQ7NEEhIjIfUyT5GFySsckDBA3SMrLi+RdGsxtqt:Ey6Gnq5Qjg5msbcSK2oEy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
694f79ff19ff797846458adafaed4a05_JaffaCakes118

Files

694f79ff19ff797846458adafaed4a05_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e91470f1bafcc0feaea05a88b95c944

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadUILanguage
VirtualAllocEx
ReadConsoleOutputA
FlushFileBuffers
SetFilePointerEx
lstrcmp
QueueUserAPC
QueueUserWorkItem
SetComputerNameExA
VirtualAlloc
GetCurrentProcess
GetCommMask
GetSystemTimes
GetLocaleInfoA
GetWindowsDirectoryA
GlobalAddAtomA
GetDiskFreeSpaceExA
GetBinaryTypeA
IsProcessorFeaturePresent
GetCurrentProcess
SearchPathW
GetConsoleCommandHistoryLengthA
SetUnhandledExceptionFilter
SetConsoleActiveScreenBuffer
SetLocalPrimaryComputerNameA
GetExitCodeThread
GetNumberFormatA
GetOverlappedResult
OpenFileMappingA
CancelWaitableTimer
RemoveDirectoryA
IsBadWritePtr
Process32Next
SetConsoleTextAttribute
GetConsoleWindow
SetConsoleInputExeNameA
GetConsoleAliasesLengthW
GetConsoleOutputCP
GetProcessWorkingSetSize
UnhandledExceptionFilter
ChangeTimerQueueTimer
VerifyVersionInfoA
GetSystemDirectoryA
GetDefaultCommConfigA
GetAtomNameA
SetConsoleFont
GetTickCount
GetTempPathA

winmm

timeBeginPeriod

user32

GetSystemMenu
EnterReaderModeHelper
SetWindowRgn
RegisterHotKey
AppendMenuA
DialogBoxParamA
EnumWindows
CalcMenuBar
CheckRadioButton
LoadMenuIndirectA
GetKeyNameTextA
LoadIconA
CreateIconIndirect
GetClassLongA
DefRawInputProc
SetPropA
IsWindowUnicode
RegisterWindowMessageA
SetSystemMenu
GetKeyboardState
NotifyWinEvent
DefWindowProcA
ReasonCodeNeedsComment
OpenIcon
GetCursorInfo
MapWindowPoints
GetDlgCtrlID
OpenWindowStationA
GetClassLongA
GetWindowThreadProcessId
RegisterClipboardFormatA
CreateSystemThreads
SetProgmanWindow
MessageBoxExA
BroadcastSystemMessageExA
CreateDialogParamA
GetMenuCheckMarkDimensions
GetMenuInfo
DragDetect
GetWindowTextA
SetScrollInfo
DialogBoxParamA
IsZoomed
RemoveMenu
SendNotifyMessageA
CopyAcceleratorTableA
GetScrollPos
IsWindowVisible

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 148KB - Virtual size: 466KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e91470f1bafcc0feaea05a88b95c944

Headers

File Characteristics

Imports

kernel32

winmm

user32

Sections

.idata Size: - Virtual size: 3KB

.itext Size: 148KB - Virtual size: 466KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.itext
Size: 148KB - Virtual size: 466KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB