a7188ffc2e8ea67c7a70fa3fbadb9514_JaffaCakes118

General

Target

a7188ffc2e8ea67c7a70fa3fbadb9514_JaffaCakes118
Size

229KB
MD5

a7188ffc2e8ea67c7a70fa3fbadb9514
SHA1

881db55b6674ae2cb469173570a9f2cc52235525
SHA256

a730f0c7672ec751e5b70cd21dcb1e2d1adba5cbd5333f0c003acbc61ca746a1
SHA512

979befd4b51b7d02d89934625827d9195d3bb40b256f37ea5a87cf61a45b357e1c9d4e9a35a106d356b1af9049d3e2598a82c208244ecec4026746553fbfec93
SSDEEP

6144:vYB2vSbQpurl1jZVGjc3DyswoxlOkHmr9sryJKD1Qi6Bq:v5t4Tj7R32opm5sesJQi6E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7188ffc2e8ea67c7a70fa3fbadb9514_JaffaCakes118

Files

a7188ffc2e8ea67c7a70fa3fbadb9514_JaffaCakes118
.exe windows:4 windows x86 arch:x86

18803b91b04acc21b65681f1d23ec8e5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleActiveScreenBuffer
InitializeCriticalSection
GetProfileIntW
GetSystemDefaultLCID
SetFileAttributesA
HeapCompact
SetConsoleCursorPosition
InterlockedDecrement
GetCompressedFileSizeW
GetProcessIoCounters
GetNamedPipeHandleStateA
FileTimeToLocalFileTime
SizeofResource
CreateEventW
LCMapStringA
HeapUnlock
GetNumaHighestNodeNumber
MapViewOfFile
GetCalendarInfoW
WriteConsoleInputW
ExpandEnvironmentStringsA
GlobalWire
GetStringTypeA
GetNumberFormatA
CreateFileW
WriteConsoleW
GetDateFormatW
CopyFileExA
FatalAppExitA
CreatePipe
SleepEx
FindFirstFileW
SetFileApisToOEM
SetConsoleTitleW
ExitThread
CreateNamedPipeW
BackupSeek
GetSystemTime
SetLocaleInfoA
DeviceIoControl
CommConfigDialogW
EnumLanguageGroupLocalesA
MoveFileW
lstrcmpiA
GetCurrencyFormatA
GetLogicalDriveStringsW
EnumTimeFormatsW
ResetEvent
GlobalAlloc
LockResource
GetPrivateProfileIntA
CancelIo

Exports

Exports

NApn
NBer
NDotz
NDv
NFdo
NFjo
NFtqj
NHdp
NHzrih
NJlrtb
NLib
NMlx
NNrx
NPof
NPwf
NQrb
NRdzn
NRohb
NTuj
NTvc
NUxf
NVal
NXhix
NYdj
NZphz
NZup
NZzi

Sections

.text
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18803b91b04acc21b65681f1d23ec8e5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 139KB - Virtual size: 138KB

.rdata Size: 33KB - Virtual size: 32KB

.data Size: 38KB - Virtual size: 39KB

.reloc Size: 17KB - Virtual size: 17KB

.text
Size: 139KB - Virtual size: 138KB

.rdata
Size: 33KB - Virtual size: 32KB

.data
Size: 38KB - Virtual size: 39KB

.reloc
Size: 17KB - Virtual size: 17KB