8db6b089ffbe3d3c19b6fe7ab9e5e1fa_JaffaCakes118

General

Target

8db6b089ffbe3d3c19b6fe7ab9e5e1fa_JaffaCakes118
Size

172KB
MD5

8db6b089ffbe3d3c19b6fe7ab9e5e1fa
SHA1

4742c1ded74095db358d8c8199d64b00efedba46
SHA256

95e3f31ee31346762decf7f0a3b8167c2965dcdf374557a90a64225f9b2f019c
SHA512

4cec215e459afeb1805158f02297d3ab88c08dde3b8e631a532644129af6fd16c817b1154b3bec050123d4b41301315dc9b5cca77bcf1dfb0a0c1b8a519dc5ce
SSDEEP

3072:8MRY9nsIGwoFG4XSdksC6SaYyt5xrLJ6IGKMt5J/zrP2hfJ/mjDh9DHP:pYaHDXSe76FYybZ5GKwJ/3PWfJ/m/hZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8db6b089ffbe3d3c19b6fe7ab9e5e1fa_JaffaCakes118

Files

8db6b089ffbe3d3c19b6fe7ab9e5e1fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

890f6fd966e765188d4875585846d3b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalSize
VirtualAlloc
SetConsoleActiveScreenBuffer
QueryPerformanceFrequency
TransmitCommChar
DebugBreak
QueryInformationJobObject
GetVersionExA
AddConsoleAliasA
GetLocalTime
LocalReAlloc
IsValidLocale
EnumSystemCodePagesA
GetStringTypeExA
LoadLibraryExA
GetProcessWorkingSetSize
SetConsoleTitleA
ReadConsoleA
EnumResourceTypesA
ReadConsoleInputA
BuildCommDCBA
GetVolumePathNameA
GetFileTime
LockFile
SetThreadExecutionState
IsValidCodePage
GetProcessHeaps
GlobalWire
GetConsoleWindow
IsBadStringPtrA
WaitForMultipleObjects
ReleaseMutex
ReadConsoleOutputA
OpenJobObjectA
PurgeComm
BeginUpdateResourceA
OpenProcess
ReplaceFileA
GetNamedPipeHandleStateA
GetDiskFreeSpaceExA
SetLocalTime
Process32Next
SetThreadPriorityBoost
SetConsoleInputExeNameA
GetExitCodeProcess
SetEndOfFile
GetDriveTypeA
WriteConsoleOutputAttribute
LZDone
GetTempFileNameA
GetWindowsDirectoryA
GetLogicalDriveStringsA
Process32First
DeleteTimerQueueTimer
GetConsoleTitleA
GetPriorityClass
InterlockedDecrement
lstrlenA
SetConsoleLocalEUDC
SetFilePointer
Heap32ListFirst
UpdateResourceA
FindFirstChangeNotificationA
GetVolumePathNamesForVolumeNameA
ReadConsoleOutputA
GetThreadContext
PeekConsoleInputA
HeapQueryInformation
WriteConsoleOutputCharacterA
HeapSize
GetStringTypeExW

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeBeginPeriod
timeGetTime

Sections

.idata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 160KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

890f6fd966e765188d4875585846d3b7

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Sections

.idata Size: - Virtual size: 1KB

.text Size: 160KB - Virtual size: 165KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 1KB

.text
Size: 160KB - Virtual size: 165KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB