d3ffa28484a9676b7c5aa27ea682bc0d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d3ffa28484a9676b7c5aa27ea682bc0d_JaffaCakes118
Size

63KB
MD5

d3ffa28484a9676b7c5aa27ea682bc0d
SHA1

fb4ef891f071450db11ecb5cd3e029b8df3be725
SHA256

be7bfa42f37847e428c46c992191b493e0b47e39d57eaf7ef3a3700c08aab420
SHA512

04817d8bccf9930a17f72e2defe7ca07365833e32ed7204a78b663cdfbf655d27fea8d9b3ec4d52958580c86e3a162dc1b459052862970eb1bb59b3b5616c2c0
SSDEEP

768:rCeKCZAi0BN11RQEGIpWEvw/4eGu1D6XmqDun:rjrAlz1TQxEvw/xVKWn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3ffa28484a9676b7c5aa27ea682bc0d_JaffaCakes118

Files

d3ffa28484a9676b7c5aa27ea682bc0d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c18585b7f54bfa17b2db06ab94b747aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ReadProcessMemory
WaitForSingleObjectEx
Sleep
CreateFileA
GetStartupInfoW
SleepEx
CreateProcessA
Sleep
LoadLibraryExW
LoadLibraryExA
GetProcAddress
LoadLibraryA
VirtualProtect
GlobalWire
GetStartupInfoW
VirtualProtectEx
TerminateProcess
CreateFileA
TerminateProcess
DeviceIoControl
CreateProcessW
GetStartupInfoA
ReadProcessMemory
LoadLibraryA

wlanapi

WlanOpenHandle
WlanOpenHandle
WlanEnumInterfaces
WlanCloseHandle
WlanOpenHandle
WlanSetInterface
WlanOpenHandle
WlanEnumInterfaces
WlanOpenHandle
WlanEnumInterfaces
WlanSetProfileEapXmlUserData
WlanOpenHandle
WlanCloseHandle
WlanCloseHandle
WlanSetInterface
WlanEnumInterfaces
WlanOpenHandle
WlanEnumInterfaces
WlanEnumInterfaces
WlanCloseHandle

Sections

.text
Size: 32KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BitDef
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c18585b7f54bfa17b2db06ab94b747aa

Headers

File Characteristics

Imports

kernel32

wlanapi

Sections

.text Size: 32KB - Virtual size: 72KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.BitDef Size: 4KB - Virtual size: 4KB

.data Size: 5KB - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 72KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.BitDef
Size: 4KB - Virtual size: 4KB

.data
Size: 5KB - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB