d1f07ec25f0715814972b59deb73bcae_JaffaCakes118

General

Target

d1f07ec25f0715814972b59deb73bcae_JaffaCakes118
Size

312KB
MD5

d1f07ec25f0715814972b59deb73bcae
SHA1

71e4ac8d5ff469509aae59f1ad40618eecbf16ab
SHA256

0ff496c805ca5c669d410ac3d79e39dbb9a8e39b6a297a9b160f5c6904b69817
SHA512

7f355c8c6ed2aa55f7c9689a8afbbd4254d1745794864e9d1949912a8214cf823f5131d269b965f4dea7be2cd5d9aa6b124c59b8b1659a33b8830d0aed0ab6df
SSDEEP

6144:w1aaLOmSDDERi2ytTBV/wXRsgkhx4i36taGBdcR9G8:SLOjovytTX/tgkhx4i36tNBdu9X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1f07ec25f0715814972b59deb73bcae_JaffaCakes118

Files

d1f07ec25f0715814972b59deb73bcae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c038ffca815a4dbea0603b7263909e9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
SuspendThread
Sleep
OpenSemaphoreW
ReadFile
SetConsoleTitleA
OpenEventW
OpenEventA
ReleaseSemaphore
SetEndOfFile
RemoveDirectoryW
SleepEx
ResumeThread
ResetEvent
DeleteFileA
SetComputerNameW
OpenThread
PulseEvent
SetFileTime
OpenMutexW
OpenFileMappingW
SetEvent
SetEnvironmentVariableW
SetFileAttributesA
SetFilePointer
SystemTimeToFileTime
TlsAlloc
SetCurrentDirectoryA
GetCurrentDirectoryA
CloseHandle
WriteFile
CreateFileA
GetTempPathA
GetModuleFileNameA
GetFileSize
GetProcAddress
LoadLibraryA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
HeapFree
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetLastError
GetStringTypeA
GetStringTypeW
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
FlushFileBuffers

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c038ffca815a4dbea0603b7263909e9d

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 12KB - Virtual size: 16KB

.rsrc Size: 164KB - Virtual size: 163KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 12KB - Virtual size: 16KB

.rsrc
Size: 164KB - Virtual size: 163KB