94606fd48c991763970a0cac045ff789_JaffaCakes118

General

Target

94606fd48c991763970a0cac045ff789_JaffaCakes118
Size

532KB
MD5

94606fd48c991763970a0cac045ff789
SHA1

949c999a7378f7ab38566568af00e73bdeb52539
SHA256

7429087db00f024e4142ae0d7e77e163aa370044f51f429a6a2d4fcc2717d7d6
SHA512

6d49b24d8b60021478ec2c9235775acc2b948dcb1a386fc1e3da919ac490340c2fb43be32cef42b6a44af2f43a68ba692a302d5a3f6a58a720dff3ddde6319f3
SSDEEP

6144:XL9V95Ww/pPOMR4GsfRHgdV8SinsI/f4Ub217vrt1VdUcoDHX:RAyYHfRH+ninsm6FDoDHX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94606fd48c991763970a0cac045ff789_JaffaCakes118

Files

94606fd48c991763970a0cac045ff789_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1036d5757d26acb9dc83685ab2338572

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringA
ReadConsoleOutputCharacterA
FileTimeToDosDateTime
GetVolumePathNamesForVolumeNameA
RequestDeviceWakeup
DeleteTimerQueueTimer
GetFileAttributesExA
PeekConsoleInputA
GetConsoleFontSize
QueueUserAPC
GetSystemTimeAsFileTime
SetPriorityClass
PurgeComm
GetWindowsDirectoryA
FindFirstVolumeMountPointA
GetThreadContext
FreeLibrary
GetSystemTimes
GetConsoleHardwareState
MoveFileExA
OpenJobObjectA
UnlockFileEx
Heap32First
FindFirstChangeNotificationA
Thread32First
GetVolumePathNameA
ExpandEnvironmentStringsA
CreateFileA
GetDllDirectoryA
GetPrivateProfileSectionNamesW
LocalLock
OpenSemaphoreA
TransmitCommChar
GetConsoleAliasExesLengthA
GetCurrentProcessId
DeleteTimerQueue
GetProcessHeap
GetProcessWorkingSetSize
HeapAlloc
VirtualAllocEx
LocalReAlloc
LZCopy
ReadConsoleOutputCharacterA
HeapDestroy
GetCommandLineA
GetLocalTime
HeapReAlloc
OpenWaitableTimerA
GetSystemTime
WaitForMultipleObjectsEx
OpenProcess
EndUpdateResourceA
BuildCommDCBA
LocalUnlock

advapi32

RegCloseKey
AdjustTokenPrivileges

Sections

.text
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 496KB - Virtual size: 832KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1036d5757d26acb9dc83685ab2338572

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: - Virtual size: 4KB

.itext Size: 496KB - Virtual size: 832KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: - Virtual size: 4KB

.itext
Size: 496KB - Virtual size: 832KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 28KB - Virtual size: 28KB