eedccbd9d8a69102b3f40adde6695d7b_JaffaCakes118

General

Target

eedccbd9d8a69102b3f40adde6695d7b_JaffaCakes118
Size

304KB
MD5

eedccbd9d8a69102b3f40adde6695d7b
SHA1

473f5aaff5a0396250b392d99b20995206307dc0
SHA256

e16bb4796a2815194be27bc79d542477cd9ec4fb4b0023c00672d73facc4dd3d
SHA512

f0f6ddded8e705bb391263ac33cf1b49a2f61bdfb06a3d9a2cceb4eaadf1d5ba83f47c35168c8e1adda91872dff688d06a66dd39b153fd56b3e439cbe7695d8b
SSDEEP

6144:K00H3mWU6rJjr3BV4/eAJu5fBdNNIhUJ5km/9VS6XhXoIaiC8+QGAc7G4ErP/KE6:K00XmWUIJnn4/e+u/dNW1m/9VS6XhXoO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eedccbd9d8a69102b3f40adde6695d7b_JaffaCakes118

Files

eedccbd9d8a69102b3f40adde6695d7b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

78932585b285a26e7fe550170d1434ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Beep
GetCommandLineA
GetEnvironmentVariableA
GetTempPathA
GetTempFileNameA
GetModuleFileNameA
GetACP
SetErrorMode
SetConsoleCtrlHandler
SetLastError
RaiseException
GetFileType
GetFileAttributesA
GetLastError
VirtualAlloc
VirtualFree
GetVersionExA
CloseHandle
GetStdHandle
FormatMessageA
DebugBreak
FreeLibrary
GetCurrentThread
GetCurrentProcess
GetProcAddress
LoadLibraryA
VirtualQuery
MapViewOfFile
CreateFileMappingA
CreateFileA
GetModuleHandleA
SetEndOfFile
SetFilePointer
WriteFile
ReadFile
GetFullPathNameA
GetFileInformationByHandle
WaitForSingleObject
SetThreadPriority
CreateProcessA
Sleep
DeleteFileA
GetLocalTime
SetLocalTime
FlushFileBuffers
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
HeapAlloc
HeapReAlloc
HeapFree
RtlUnwind
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
MultiByteToWideChar
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadWritePtr
GetCPInfo
GetOEMCP
WriteConsoleA
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringA
CompareStringW
SetStdHandle
GetExitCodeProcess

Sections

.text
Size: 244KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78932585b285a26e7fe550170d1434ef

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 244KB - Virtual size: 242KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 36KB - Virtual size: 239KB

.rsrc Size: 4KB - Virtual size: 920B

.text
Size: 244KB - Virtual size: 242KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 36KB - Virtual size: 239KB

.rsrc
Size: 4KB - Virtual size: 920B