6a363639ace653db873c7167d7ccac32_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6a363639ace653db873c7167d7ccac32_JaffaCakes118
Size

25KB
MD5

6a363639ace653db873c7167d7ccac32
SHA1

854e803d1f6c018fc7fa1d60136d0cb71069c18d
SHA256

b885d63e34380e079b1298f2bdf8035717e187d83fe46fbed2678afea4f95855
SHA512

889b1e204e1db3d1a8f79c6f99f28d22c9d8aeb74802e6255dfc91101ea88dd4fa1e3dcc565e6e7f21691f8e818870c937500276e47dba7274f3d0fb46f81ebf
SSDEEP

768:r0dB1dmXwKyqkTbkE8N59spFRaymLz7ufJY:wrmX+q7Nw45aBY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/USBDumper - OK/bin/USBDumper.exe

Files

6a363639ace653db873c7167d7ccac32_JaffaCakes118
.zip
USBDumper - OK/bin/USBDumper.exe
.exe windows:4 windows x86 arch:x86

6244d1c7d4eab83423dc88acd7627dff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
GetLocalTime
FindClose
FindNextFileA
FindFirstFileA
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetFilePointer
FlushFileBuffers
LoadLibraryA
GetProcAddress
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
GetLastError
CreateDirectoryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
CloseHandle

user32

DefWindowProcA
wsprintfA
RegisterClassExA
CreateWindowExA
ShowWindow
RegisterDeviceNotificationA
GetMessageA
TranslateMessage
DispatchMessageA

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
USBDumper - OK/src/USB.dsp
USBDumper - OK/src/USB.dsw
USBDumper - OK/src/USB.ncb
USBDumper - OK/src/USB.opt
USBDumper - OK/src/USB.plg
.html
USBDumper - OK/src/usb.cpp

Sharing

General

Malware Config

Signatures

Files

6244d1c7d4eab83423dc88acd7627dff

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 16KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 16KB