6695ef139dc33c539f08a2b38bbb7726_JaffaCakes118

General

Target

6695ef139dc33c539f08a2b38bbb7726_JaffaCakes118
Size

197KB
MD5

6695ef139dc33c539f08a2b38bbb7726
SHA1

7060066170ff60405f184baeff6f60b51e9e5e89
SHA256

1fbab659615dc1ec5fe7711cd3e004766cfeff292309c1d579d7dfc1246978b4
SHA512

dd0ff1dd45c898bb13e3945fb38ede9b94dc7963ea0ff1b26d9c00ad7a598f3d954e7e7e8e7b99c24bf801e5f0122e664d1a1c217b4b7c0be19ea7a4dfcc5ad4
SSDEEP

6144:BorKv4r23T/6Wi9EwlUSnHBO8iiVoxCoD:arw4IilU0BxF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6695ef139dc33c539f08a2b38bbb7726_JaffaCakes118

Files

6695ef139dc33c539f08a2b38bbb7726_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9cbc2e39e52cc0f7146e9f3264f6c440

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
QueryPerformanceCounter
FreeEnvironmentStringsA
GetCPInfo
GetACP
SetStdHandle
CreateEventW
SetProcessAffinityMask
GetModuleFileNameW
TerminateThread
WriteConsoleW
LCMapStringA
IsValidCodePage
LCMapStringW
CreateProcessW
MoveFileW
WaitForMultipleObjects
SetEvent
GetSystemTimeAsFileTime
GlobalAlloc
GetLocalTime
GetCurrentProcessId
ReadFile
CreateFileA
GlobalLock
WriteConsoleA
Sleep
OutputDebugStringW
EnumResourceTypesA
InterlockedIncrement
GetConsoleOutputCP
GetCurrentThreadId
LoadLibraryA
CreateFileW
GetStringTypeA
WriteFile
FreeEnvironmentStringsW
GetProfileIntA
GetEnvironmentStringsW
GetStringTypeW
WaitForSingleObject
GetOEMCP
GetLocaleInfoA
FlushFileBuffers
DeleteCriticalSection
GetEnvironmentStrings
SetEndOfFile
GlobalUnlock

imm32

ImmAssociateContext

ole32

CoMarshalHresult
CoCreateInstance
CoQueryProxyBlanket
CoTaskMemFree
CoInitializeSecurity
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
StringFromGUID2

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cbc2e39e52cc0f7146e9f3264f6c440

Headers

File Characteristics

Imports

kernel32

imm32

ole32

Sections

.text Size: 122KB - Virtual size: 122KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 70KB - Virtual size: 70KB

.reloc Size: 1024B - Virtual size: 248KB

.text
Size: 122KB - Virtual size: 122KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 70KB - Virtual size: 70KB

.reloc
Size: 1024B - Virtual size: 248KB