da73c27eba74a441c44ea2df777f68c3_JaffaCakes118

General

Target

da73c27eba74a441c44ea2df777f68c3_JaffaCakes118
Size

47KB
MD5

da73c27eba74a441c44ea2df777f68c3
SHA1

66d4a79c159aaf19c865c1634ed0a6845652843e
SHA256

af267b9be371a48bb7771b675c4bc1dfee0020b0e5687a31d21d5f2741839ec2
SHA512

c3eb8c7021bb09a35fd12d5d7cd96569ce11d70808a4208285a6f87a6a88fda258526c02c4ae8837e1d947c73ff7d26553d43cefd232058490639fff4eb51c52
SSDEEP

768:zq0XmVlLrUz8eOQhgQR9o7ORBDDou2NH6fYB5RmBdI39J:zxXGHO9qaw3Rr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da73c27eba74a441c44ea2df777f68c3_JaffaCakes118

Files

da73c27eba74a441c44ea2df777f68c3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d989c7f8f702c8feefa558760c9c39c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSummary
GetCommandLineW
FlushConsoleInputBuffer
GetProcAddress
CreateMailslotW
GetConsoleAliasesLengthA
OpenJobObjectA
DeviceIoControl
GetSystemDirectoryW
GetLastError
SetFilePointerEx
CreateNamedPipeW
VirtualProtectEx
InterlockedIncrement
WriteConsoleInputW
DisconnectNamedPipe
OpenSemaphoreW
GetOverlappedResult
VirtualQueryEx
GetCurrentConsoleFont
GetFullPathNameW
LoadModule
GetComputerNameA
CreateNamedPipeA
AllocateUserPhysicalPages
WritePrivateProfileStructW
lstrcpynA
HeapFree
GetNumberOfConsoleMouseButtons
GetFileInformationByHandle
EnumSystemLanguageGroupsW
SetProcessWorkingSetSize
WideCharToMultiByte
VDMConsoleOperation
FindFirstVolumeA
CreateEventA
GetCurrentProcess
UnhandledExceptionFilter
EnumResourceTypesA
GetSystemInfo
OpenMutexA
FillConsoleOutputCharacterA
SetConsoleActiveScreenBuffer
GetLogicalDriveStringsA
FindAtomW
EraseTape
GetProfileIntA
LoadLibraryA
WriteProcessMemory
RegisterWowExec
FatalExit
GetLogicalDriveStringsW
Thread32Next
GetThreadPriorityBoost
WriteProfileSectionW
UpdateResourceW
CancelDeviceWakeupRequest

user32

SetCapture

Sections

.text
Size: 4KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3d989c7f8f702c8feefa558760c9c39c

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 4KB - Virtual size: 88KB

.data Size: 40KB - Virtual size: 40KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 88KB

.data
Size: 40KB - Virtual size: 40KB

.idata
Size: 2KB - Virtual size: 4KB