70e50bafe4a6c3a7a3f340fc89f7fc73_JaffaCakes118

General

Target

70e50bafe4a6c3a7a3f340fc89f7fc73_JaffaCakes118
Size

68KB
MD5

70e50bafe4a6c3a7a3f340fc89f7fc73
SHA1

58583881adaba4b70ad2a50b712084aed568b93b
SHA256

5a6f0aeaa144d87163d3d51177f32e66335d841bc2755d2115ea780e360d56fc
SHA512

c689d61bb083547d9962aae8d6822048afbbe231f7ccf7d0fdba9c52084bc733b5ce9fd8ae112923b4a0cd0c64568139ff21881b0689ba295b96a6f25990a22b
SSDEEP

1536:xIqQNYbHvBcGHs0lIj00mzhKWunsY1k/NJyY5BRgHr:KP8nHs0olyhTzYK/NkAE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70e50bafe4a6c3a7a3f340fc89f7fc73_JaffaCakes118

Files

70e50bafe4a6c3a7a3f340fc89f7fc73_JaffaCakes118
.dll windows:4 windows x86 arch:x86

c8aaec0270e1419b0d325b67887098ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WriteConsoleOutputCharacterA
Process32Next
CopyFileExA
WriteProfileStringA
GetModuleFileNameA
GetNamedPipeHandleStateA
GetCommandLineA
OpenThread
DisconnectNamedPipe
GetFullPathNameA
ExitProcess
ChangeTimerQueueTimer
GetThreadSelectorEntry
GetFileType
WriteConsoleOutputA
ResumeThread
SetVDMCurrentDirectories
OpenMutexA
VirtualAlloc
GetLogicalDriveStringsA
GetProcessIoCounters
OpenSemaphoreA
GetCurrentProcess
RequestWakeupLatency
GetCommandLineW
HeapQueryInformation

wininet

InternetReadFile
HttpOpenRequestW
InternetOpenW
HttpQueryInfoW
HttpAddRequestHeadersW
HttpSendRequestW
InternetConnectW

user32

ToAsciiEx
CharToOemA
SetShellWindow
GetClassLongA
CreateWindowStationA
IsRectEmpty
GetAsyncKeyState
IsMenu
GetMenu
GrayStringA
GetPriorityClipboardFormat
GetWindowTextA
SetThreadDesktop
GetUpdateRect
PostQuitMessage
SetShellWindowEx
LoadKeyboardLayoutA
ChangeMenuA
GetAncestor
CreatePopupMenu
LoadBitmapA
GetWindowRgnBox
PrivateExtractIconsA
GetMenuCheckMarkDimensions

Exports

Exports

Usqqtxihfsa
OpenQenkkoyoiy

Sections

.textbbs
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 56KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8aaec0270e1419b0d325b67887098ae

Headers

File Characteristics

Imports

kernel32

wininet

user32

Exports

Exports

Sections

.textbbs Size: - Virtual size: 1KB

.text Size: 56KB - Virtual size: 185KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.textbbs
Size: - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 185KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB