ce3e75e5331fc3b4362394bd4bb2d04e_JaffaCakes118

General

Target

ce3e75e5331fc3b4362394bd4bb2d04e_JaffaCakes118
Size

220KB
MD5

ce3e75e5331fc3b4362394bd4bb2d04e
SHA1

16d81100fab1c672834d561ad3a1969acce0dda5
SHA256

6b41b4a0534c51727b79d19f56001e75142458246dbe74ad0e91d1f6895b6d8f
SHA512

ccdb84a53791d865777d3145166660859c54a2fd4567f1c600855870f3fbaedf1a4213068fa9f9e0b4639018f637216026dfc8bac43f13637b7f5aa066a3245f
SSDEEP

3072:2gk9TqvLBeK9sSmfyzbLZ0vmulphVgZMhV9DX3+1uVe1rHRYK2jnX7U4Z:CgvL0ymfyd0eEVVEGmHWKC9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce3e75e5331fc3b4362394bd4bb2d04e_JaffaCakes118

Files

ce3e75e5331fc3b4362394bd4bb2d04e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8eb7802fb4cea65e4639ff1ab9f2bd8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadHugeWritePtr
VirtualProtect
SetHandleInformation
HeapCreate
SetFileAttributesA
ConnectNamedPipe
VirtualAlloc
GetDevicePowerState
AllocConsole
GlobalSize
GetVDMCurrentDirectories
HeapDestroy
GetModuleFileNameA
GetNumberOfConsoleMouseButtons
IsBadHugeWritePtr
ReadConsoleA
GetLogicalDriveStringsA
WriteConsoleOutputA
DefineDosDeviceA
GetTempPathA
CancelWaitableTimer
FlushFileBuffers
GetSystemDirectoryA
ReadConsoleInputA
ExitProcess
GetFileTime
SetTimeZoneInformation
WriteConsoleInputA
GetWindowsDirectoryA
GetComputerNameA
CloseHandle
GetStdHandle
WritePrivateProfileStructA
WriteConsoleOutputCharacterA
HeapFree
OpenMutexA
GetProcessHandleCount
ClearCommError
MoveFileWithProgressA
SetEndOfFile
GetEnvironmentStringsA
LocalFileTimeToFileTime
GetProcessVersion
GetProfileIntA
GlobalDeleteAtom
SetTimerQueueTimer
GetModuleHandleA
GetDefaultCommConfigA
IsDebuggerPresent
GetProcessWorkingSetSize
GetProcessHeaps
SetPriorityClass
CreateWaitableTimerA
ExpandEnvironmentStringsA
GetConsoleMode
OpenWaitableTimerA
GetThreadSelectorEntry
SetDefaultCommConfigA
lstrcpyA
CancelTimerQueueTimer
GetSystemDefaultLangID

tapi32

lineAddProviderA

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 64KB - Virtual size: 727KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8eb7802fb4cea65e4639ff1ab9f2bd8d

Headers

File Characteristics

Imports

kernel32

tapi32

Sections

.itext Size: - Virtual size: 1KB

.text Size: 64KB - Virtual size: 727KB

.idata Size: 60KB - Virtual size: 58KB

.rsrc Size: 92KB - Virtual size: 89KB

.itext
Size: - Virtual size: 1KB

.text
Size: 64KB - Virtual size: 727KB

.idata
Size: 60KB - Virtual size: 58KB

.rsrc
Size: 92KB - Virtual size: 89KB