8b2719ab73981cb613e4776523ce30ed_JaffaCakes118

General

Target

8b2719ab73981cb613e4776523ce30ed_JaffaCakes118
Size

292KB
MD5

8b2719ab73981cb613e4776523ce30ed
SHA1

75f8e59eb5e399b0fad8849e72527d8eb1a9497f
SHA256

904f7fdfbe3d9e39cf2ab2ffc831253b89abb24c4f54fa4949443eeb95ddd2e0
SHA512

c75bf5814ae98ab3df4d3dd7abab7bb0d92aa814b2f7e8ab30d51452320b18ddcba25fef9f7eb410f262e065d016ac2714193dc935e008ebc81bcf1817622978
SSDEEP

6144:abZPyhz2rd/nY2urx6Nz9L+CWhILg06NP3DhC5wmtlUN:jhz2R26bBqC5Zk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b2719ab73981cb613e4776523ce30ed_JaffaCakes118

Files

8b2719ab73981cb613e4776523ce30ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

74a3bfcd394d7bb56b8ccad6d58dff03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetMailslotInfo
SetUnhandledExceptionFilter
GetVolumePathNameA
IsBadCodePtr
GetVDMCurrentDirectories
GetCurrentConsoleFont
CreateTimerQueueTimer
GetLogicalDriveStringsA
IsBadHugeWritePtr
GetCommTimeouts
GetConsoleOutputCP
SetTimerQueueTimer
MoveFileExA
GetConsoleCommandHistoryLengthA
GetProcessTimes
GetCurrencyFormatA
GetCommandLineA
GetCurrentThread
WriteProcessMemory
SetConsoleCursorInfo
DebugBreak
WriteConsoleA
HeapReAlloc
WriteFile
ReadConsoleA
SetDefaultCommConfigA
GetProfileIntA
SetTimeZoneInformation
GetDriveTypeA
RequestWakeupLatency
GetEnvironmentVariableA
GetWindowsDirectoryA
OutputDebugStringA
GetSystemDirectoryA
FlushConsoleInputBuffer
SetFirmwareEnvironmentVariableA
EnumResourceTypesA
SetFilePointer
ExitThread
SetConsoleLocalEUDC
GetVersion
GetUserDefaultLangID
PeekConsoleInputA
UpdateResourceA
EnumSystemLanguageGroupsA
IsBadStringPtrA
SetVolumeMountPointA
SetFilePointerEx
WriteFileGather
GetThreadPriorityBoost
UnlockFileEx
SetHandleInformation
WriteProfileStringA
GetEnvironmentStringsA
GetConsoleCursorInfo
SystemTimeToTzSpecificLocalTime
SetConsoleScreenBufferSize
VirtualAlloc
FindFirstChangeNotificationA
CreateNamedPipeA
WritePrivateProfileStringA
GetDiskFreeSpaceA
WriteConsoleOutputCharacterW
WinExec

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetSystemTime
timeGetTime

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 280KB - Virtual size: 395KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74a3bfcd394d7bb56b8ccad6d58dff03

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Sections

.idata Size: - Virtual size: 3KB

.text Size: 280KB - Virtual size: 395KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.text
Size: 280KB - Virtual size: 395KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB