76dbb3b51732be9adac2719326564dc1_JaffaCakes118

General

Target

76dbb3b51732be9adac2719326564dc1_JaffaCakes118
Size

216KB
MD5

76dbb3b51732be9adac2719326564dc1
SHA1

436bec71ffeae8d73cf9a46f910b8789434953b2
SHA256

33bb19e8a25171c22859c557e8790520c8d8da31ae4fa509327b1d28525c2211
SHA512

cb60e256069f6039411e9a715fca000052c40752b91339783b87cd7f67d6277ba29ee3bccd75244c40078875283cea4aaf410ab69aabbd7601391583a87f8236
SSDEEP

3072:3F9tWV7zQ1QfXgGAAho0o35UcLnMP7fq1WSuc8oAub20XQWXEyv:3ezQ1y/oO6MP7MUor

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76dbb3b51732be9adac2719326564dc1_JaffaCakes118

Files

76dbb3b51732be9adac2719326564dc1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea3966adf7867d8fdf35c94389acb9c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadHugeWritePtr
GetProcessId
SetThreadLocale
GetDateFormatA
BuildCommDCBAndTimeoutsA
OpenMutexA
FlushConsoleInputBuffer
UnlockFile
SetConsoleWindowInfo
EnumTimeFormatsA
GetConsoleTitleA
GetConsoleFontSize
SetConsoleKeyShortcuts
GetDiskFreeSpaceA
lstrcpynA
GetTempPathA
ReadConsoleOutputAttribute
AddAtomA
CommConfigDialogA
EndUpdateResourceA
GetVolumeInformationA
GetConsoleWindow
GetLogicalDriveStringsA
AllocConsole
WriteConsoleA
GetPrivateProfileSectionNamesA
IsBadHugeWritePtr
WaitNamedPipeA
IsBadHugeWritePtr
MoveFileWithProgressA
FlushFileBuffers
SetInformationJobObject
SetupComm
GetCurrentConsoleFont
GetLocaleInfoA
GetSystemDirectoryA
OpenWaitableTimerA
DeleteFileA
SetLocalTime
SetFilePointer
GetDriveTypeA
EnumSystemCodePagesA
TransmitCommChar
GlobalDeleteAtom
LocalAlloc
GetSystemTimes
RemoveDirectoryA
EnumResourceLanguagesA
HeapSize
GetCommModemStatus
WriteConsoleOutputCharacterW
GetConsoleCursorInfo
FreeConsole
ReadConsoleA
LoadLibraryExA
LocalHandle
OpenEventA
SetDllDirectoryA
CancelTimerQueueTimer
SetProcessWorkingSetSize
VirtualAlloc
GetFileAttributesA
GetComputerNameExA
WriteProfileStringA

tapi32

lineAddProviderA

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 68KB - Virtual size: 728KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea3966adf7867d8fdf35c94389acb9c2

Headers

File Characteristics

Imports

kernel32

tapi32

Sections

.itext Size: - Virtual size: 1KB

.text Size: 68KB - Virtual size: 728KB

.idata Size: 56KB - Virtual size: 52KB

.rsrc Size: 88KB - Virtual size: 86KB

.itext
Size: - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 728KB

.idata
Size: 56KB - Virtual size: 52KB

.rsrc
Size: 88KB - Virtual size: 86KB