f5c1164e71d4f9d2ee72c57011d5d07b_JaffaCakes118

General

Target

f5c1164e71d4f9d2ee72c57011d5d07b_JaffaCakes118
Size

124KB
MD5

f5c1164e71d4f9d2ee72c57011d5d07b
SHA1

e44bd0177491912b1b75696238baebc01ce1890a
SHA256

02f5c06dbe652f936265e5e2135ea093b3f6e0c1b07cf9c6915b26d693832618
SHA512

46820cce7ff1881077b729bbb413790bc805f3c714422c1f2455de92162bddbae2a87835654c25fb10e0224b25e6606367a483ab2d74a685bd47c1e619adbc26
SSDEEP

1536:OU6AmvQzoSv4lZajbIH7i+syvgMse/EqV4WpsJHi1KkIopN3lNxS:O7P2yvgJe/EqV4fJeRlNxS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5c1164e71d4f9d2ee72c57011d5d07b_JaffaCakes118

Files

f5c1164e71d4f9d2ee72c57011d5d07b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

311cdb92a92f727abd43d0762e7cc3a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
GetSystemTime
HeapDestroy
CreateDirectoryA
SetConsoleActiveScreenBuffer
SetCalendarInfoA
GetTapeParameters
LCMapStringA
OpenSemaphoreA
FlushFileBuffers
GetConsoleOutputCP
ReadConsoleOutputCharacterA
GetCalendarInfoA
SetUnhandledExceptionFilter
GetStartupInfoA
VirtualAlloc
OpenFileMappingA
GetFileAttributesExA
GetStdHandle
Process32First
GetCommandLineA
OpenJobObjectA
GetEnvironmentStringsA
WritePrivateProfileSectionA
SetConsoleHardwareState
_hwrite
GetModuleHandleA
CopyFileA
GetConsoleCommandHistoryA
OpenMutexA
EndUpdateResourceA
GetThreadContext
RegisterWaitForInputIdle

gdi32

RemoveFontResourceA

user32

DispatchMessageA
SetClipboardViewer
ChangeMenuA
IsWindowVisible
GetWindowTextA
GetWindowContextHelpId
PostQuitMessage
ChildWindowFromPoint
ReleaseDC
GetDCEx
EndMenu
CharNextA
EnumDisplayMonitors
CharUpperBuffA
IsChild
GetMessageTime
GetTabbedTextExtentA
CallMsgFilterA
CopyRect
RegisterDeviceNotificationA
ReleaseDC
LoadBitmapA

Exports

Exports

BeginNdcdfajvl
ReadSyrrauqqqar
Xqsbqkd

Sections

.text
Size: 112KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

311cdb92a92f727abd43d0762e7cc3a3

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 131KB

.data Size: - Virtual size: 3KB

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 112KB - Virtual size: 131KB

.data
Size: - Virtual size: 3KB

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB