dc41ed4abe5ede033c68b202662872dc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dc41ed4abe5ede033c68b202662872dc_JaffaCakes118
Size

416KB
MD5

dc41ed4abe5ede033c68b202662872dc
SHA1

2662e922ad1b9c2229cd3a541d63cc8432c45964
SHA256

1eaf66405c432aa31259e0fe6117b9881f52c8b2646ddb57fba9c2ad5e26599d
SHA512

8951f8ba06cfb34b7de20b0a6c9a2838503f281441579300f47ba5b7f2dc870256b511ab67862fd68356803a9aac10fe8aaf90bf5efd84ea40f7e95d75604859
SSDEEP

6144:hCZL4ygaFHD77w8ZlecqvLxgAqqSEQQpOhG1TMVlv28X+E9BddP671fwZ:EZXgh8XrWLDBsMTMVl+8X+E9TM1a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc41ed4abe5ede033c68b202662872dc_JaffaCakes118

Files

dc41ed4abe5ede033c68b202662872dc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f98348c0303b83426c068f8525a32b57

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateThread
SleepEx
GetCurrentProcessId
GetDateFormatA
IsProcessorFeaturePresent
GetTimeFormatA
UnlockFile
GetCurrentThread
SetupComm
GetSystemWindowsDirectoryA
UnmapViewOfFile
MoveFileA
GetNumberOfConsoleInputEvents
FileTimeToDosDateTime
GetVersionExA
GlobalFree
GetDriveTypeA
lstrcatA
lstrcmpW
GetLogicalDrives
GetConsoleAliasesW
SetLocaleInfoW
Thread32Next
VirtualAllocEx
GetProfileStringW
SetConsoleOutputCP
GlobalCompact
GetCPInfo
LoadLibraryA
ResetWriteWatch
Module32FirstW
VirtualFree
GetNamedPipeHandleStateA
QueryPerformanceFrequency
DefineDosDeviceW
GetFileAttributesExW
DeleteCriticalSection
CreateConsoleScreenBuffer
WinExec
GetProcessPriorityBoost
WriteConsoleA
SetConsoleNlsMode
RequestDeviceWakeup
LockResource
FatalAppExitW
IsBadCodePtr
ReadConsoleA
DelayLoadFailureHook
VerifyVersionInfoA
GetComputerNameA
OpenFileMappingA
GetFileTime
SetConsoleNumberOfCommandsW
UpdateResourceW
lstrlen
RemoveDirectoryW
SetInformationJobObject
GetDiskFreeSpaceExW
ReadDirectoryChangesW
HeapDestroy
ReleaseMutex
EnumResourceNamesW
GetQueuedCompletionStatus
ReadConsoleW
SetCommState
PrepareTape
BuildCommDCBA
GetStringTypeExW
FindResourceW
DeleteTimerQueueEx
CompareStringW
WritePrivateProfileSectionA
VDMConsoleOperation
SetConsoleCursorInfo
SetThreadPriorityBoost
HeapSize
lstrcmpiW
CreateToolhelp32Snapshot
GetModuleFileNameW
GetConsoleCP
Thread32First
SetLocaleInfoA
CreateHardLinkW
SetComputerNameA
FindFirstFileW
SetHandleCount
GetProfileStringA
OutputDebugStringW
AllocConsole
PeekNamedPipe
lstrcmpi
TransmitCommChar
GetPrivateProfileStructW
GetHandleInformation
GetComputerNameExA
EnumTimeFormatsA
GetSystemTime
ResetEvent
OpenWaitableTimerA

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f98348c0303b83426c068f8525a32b57

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1024B - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 984B

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1024B - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 984B