a4ff7c5061dbafd5ca2b7a28c1012090_JaffaCakes118

General

Target

a4ff7c5061dbafd5ca2b7a28c1012090_JaffaCakes118
Size

756KB
MD5

a4ff7c5061dbafd5ca2b7a28c1012090
SHA1

dc6a7339574c69c451c20176c7ee086455549189
SHA256

6e76966af2a7a9a57861d10747417f3210ee2fcafdee03ad068c683bd2a35dc3
SHA512

2dade9574585ba52d18013698a6ac2ddb4ed71912821c5800b91de3b940a317e62708c7dd6125ae453a05ecc1207104fac0ebcee2aea1ac50c6fad7bf9ec5176
SSDEEP

12288:9DkExEo9esdYakWiR1wZhzTrLfG8D3WfgKpGm64THM:Z/9esXkb1wTO8zWf9pGm3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a4ff7c5061dbafd5ca2b7a28c1012090_JaffaCakes118

Files

a4ff7c5061dbafd5ca2b7a28c1012090_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0100e6e96b0f1de77e17314a5b73482e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_ISOLATION

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCurrentProcessId
GetModuleHandleA
GetNumberFormatA
GetProcAddress
HeapFree
LoadLibraryA
ReadProcessMemory
VirtualAlloc
VirtualFree

setupapi

SetupDiGetClassDescriptionExW
SetupInstallServicesFromInfSectionExA
SetupSetDirectoryIdExA
SetupDiGetDriverInfoDetailA

user32

GetNextDlgTabItem
MapVirtualKeyW
MessageBoxExA
OemToCharBuffW
OpenDesktopW
GetKeyNameTextW
SetClipboardData
UnregisterClassA
WaitMessage
WindowFromDC
CharUpperBuffW
GetKBCodePage
CloseClipboard
EnumDisplaySettingsExW
SendMessageTimeoutA
EnumDesktopsA
GetInputDesktop

msvcrt

time
isdigit
exit
__set_app_type
__p__commode
__getmainargs

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 443KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rata
Size: 270KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0100e6e96b0f1de77e17314a5b73482e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

setupapi

user32

msvcrt

Sections

.text Size: 40KB - Virtual size: 40KB

.data Size: 443KB - Virtual size: 444KB

.rata Size: 270KB - Virtual size: 272KB

.bss Size: - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 40KB - Virtual size: 40KB

.data
Size: 443KB - Virtual size: 444KB

.rata
Size: 270KB - Virtual size: 272KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB