db55002733b7bdeac1888637afe9a10c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

db55002733b7bdeac1888637afe9a10c_JaffaCakes118
Size

51KB
MD5

db55002733b7bdeac1888637afe9a10c
SHA1

676d4dd752a32e1d6c6c4762d8e51cddc605aeb5
SHA256

228cc1aec36c87ce5c9dd8d479ccd40d136adf8317607ae0f00b795bdbe919fa
SHA512

d3ff9fe8d0a9ea3fd387e17d9d4996c1e70f3daa2c6b172b58e0c8954181c922adbd44f76556ef602cd4726c9b625dc0f7a7f64e18ddebadc16de11d17c92b7e
SSDEEP

1536:8QrCx5U9gU0ejwgyRDXojhHjB35gfebEFHwWMU9L:hCfhLeJyNoDe2IFH39L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db55002733b7bdeac1888637afe9a10c_JaffaCakes118

Files

db55002733b7bdeac1888637afe9a10c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f98348c0303b83426c068f8525a32b57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
SleepEx
GetCurrentProcessId
GetDateFormatA
IsProcessorFeaturePresent
GetTimeFormatA
UnlockFile
GetCurrentThread
SetupComm
GetSystemWindowsDirectoryA
UnmapViewOfFile
MoveFileA
GetNumberOfConsoleInputEvents
FileTimeToDosDateTime
GetVersionExA
GlobalFree
GetDriveTypeA
lstrcatA
lstrcmpW
GetLogicalDrives
GetConsoleAliasesW
SetLocaleInfoW
Thread32Next
VirtualAllocEx
GetProfileStringW
SetConsoleOutputCP
GlobalCompact
GetCPInfo
LoadLibraryA
ResetWriteWatch
Module32FirstW
VirtualFree
GetNamedPipeHandleStateA
QueryPerformanceFrequency
DefineDosDeviceW
GetFileAttributesExW
DeleteCriticalSection
CreateConsoleScreenBuffer
WinExec
GetProcessPriorityBoost
WriteConsoleA
SetConsoleNlsMode
RequestDeviceWakeup
LockResource
FatalAppExitW
IsBadCodePtr
ReadConsoleA
DelayLoadFailureHook
VerifyVersionInfoA
GetComputerNameA
OpenFileMappingA
GetFileTime
SetConsoleNumberOfCommandsW
UpdateResourceW
lstrlen
RemoveDirectoryW
SetInformationJobObject
GetDiskFreeSpaceExW
ReadDirectoryChangesW
HeapDestroy
ReleaseMutex
EnumResourceNamesW
GetQueuedCompletionStatus
ReadConsoleW
SetCommState
PrepareTape
BuildCommDCBA
GetStringTypeExW
FindResourceW
DeleteTimerQueueEx
CompareStringW
WritePrivateProfileSectionA
VDMConsoleOperation
SetConsoleCursorInfo
SetThreadPriorityBoost
HeapSize
lstrcmpiW
CreateToolhelp32Snapshot
GetModuleFileNameW
GetConsoleCP
Thread32First
SetLocaleInfoA
CreateHardLinkW
SetComputerNameA
FindFirstFileW
SetHandleCount
GetProfileStringA
OutputDebugStringW
AllocConsole
PeekNamedPipe
lstrcmpi
TransmitCommChar
GetPrivateProfileStructW
GetHandleInformation
GetComputerNameExA
EnumTimeFormatsA
GetSystemTime
ResetEvent
OpenWaitableTimerA

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f98348c0303b83426c068f8525a32b57

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 984B

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 984B