8c2c4520b42f2fde467055f45ad5525c_JaffaCakes118

General

Target

8c2c4520b42f2fde467055f45ad5525c_JaffaCakes118
Size

64KB
MD5

8c2c4520b42f2fde467055f45ad5525c
SHA1

52cd69d67ea261be10de9f47c04ac9f912ea7154
SHA256

3d15f64f0e115cc1d956c7f0a06e346b891248a2f34b1656ed5d86f8318e7fc4
SHA512

6ed9b535210b4d56ec605fb89e903013cde86c78800b62ef98d606f3139562d248c0ff03ca5795e6f8f055e28876f3d887d61e914aa6a14189865a4cf142c46d
SSDEEP

1536:ku7DIhMsKw8J5Qmt9JIXkC1o78hB+S6O4oCTnD:TDIhBLMQUlC1o1HZoM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8c2c4520b42f2fde467055f45ad5525c_JaffaCakes118

Files

8c2c4520b42f2fde467055f45ad5525c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

c575ee7845dd438780d5283e274a5b0b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReadConsoleInputA
FormatMessageA
GetPrivateProfileStringA
VirtualAllocEx
OpenProfileUserMapping
Process32Next
GetSystemWindowsDirectoryA
UnlockFile
GetProcessVersion
MoveFileExA
GetConsoleCharType
IsSystemResumeAutomatic
EnumUILanguagesA
GetFileAttributesA
HeapValidate
GetConsoleTitleA
SetEvent
OpenEventA
RemoveDirectoryA
RaiseException
TransmitCommChar
GetPriorityClass
ResetEvent
OpenFileMappingA
SetEndOfFile
GetDefaultCommConfigA
WaitForMultipleObjects
GetCurrentDirectoryA
IsDebuggerPresent
GlobalSize
IsBadStringPtrA
SetFileAttributesA

wininet

FtpSetCurrentDirectoryW
ResumeSuspendedDownload
InternetQueryDataAvailable
InternetGetConnectedStateExA
InternetCrackUrlA
FtpSetCurrentDirectoryW
FtpRemoveDirectoryW
InternetUnlockRequestFile

Exports

Exports

Esyrbkja
Iismufg
Adsvmgvour
InitBxkdxxn
GetWgnumhtgtxf
Nitymsblb
Ixhntyscc
Fourjybdcs

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c575ee7845dd438780d5283e274a5b0b

Headers

File Characteristics

Imports

kernel32

wininet

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 52KB - Virtual size: 187KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.itext
Size: - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 187KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB