fa6a6c4009d59da847294b6f2f36b9e2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fa6a6c4009d59da847294b6f2f36b9e2_JaffaCakes118
Size

144KB
MD5

fa6a6c4009d59da847294b6f2f36b9e2
SHA1

ef307040f6c2f20e07a0db604af4a509c1e89ba3
SHA256

1dc862c8e424039cdd0af1dd7f99bcd62173e0dba1e85b9561b79992c2825001
SHA512

15e96a364a2fb2aa8c8f73ce70267d6288db9bb1923d6b342b708d5e2836aca9143a37c3c6cdb5d40e01fb30d56d4d013470fc55c848d80e08086c0e5670903d
SSDEEP

3072:h/mf2LpSjf+5N1ZWd/jf6wBRaZiDYYPYcz/LtuSxp6O0:h/8YUjf2X+/raicwn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa6a6c4009d59da847294b6f2f36b9e2_JaffaCakes118

Files

fa6a6c4009d59da847294b6f2f36b9e2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

ea1fd60ff2fcee84e2272c1a03f2f1fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WriteFileGather
BuildCommDCBAndTimeoutsA
GetSystemDirectoryA
CreateFileA
SetThreadAffinityMask
GetProcessShutdownParameters
WriteConsoleA
ReadConsoleOutputCharacterA
GetModuleHandleA
DebugBreak
SetConsoleDisplayMode
WriteConsoleOutputA
GetStringTypeA
GetCommMask
DeleteTimerQueueTimer
GetProcessPriorityBoost
WritePrivateProfileStructA
lstrcat
OpenProcess
DisconnectNamedPipe
GetDiskFreeSpaceExA
SetConsoleActiveScreenBuffer
GetThreadPriorityBoost
IsDebuggerPresent
MultiByteToWideChar
IsBadStringPtrA
VirtualAlloc
OpenWaitableTimerA
GetSystemTimes
GetSystemWindowsDirectoryA
EnumUILanguagesA
GetSystemDirectoryA
Module32First
FormatMessageA
PrepareTape
GetCurrentThread
ResumeThread
FindNextFileA
GetDllDirectoryA
FindResourceA
ReplaceFileA
GetPrivateProfileSectionNamesA
SetFilePointer
WriteConsoleOutputCharacterA
UnlockFile
GetExitCodeProcess
SetConsoleCursorInfo
SetProcessShutdownParameters
SetConsoleWindowInfo
SetThreadUILanguage
OpenSemaphoreA
GetDefaultCommConfigA
WriteConsoleInputA
GetExitCodeProcess
GetNumberFormatA
ExpandEnvironmentStringsA
SetSystemTime
LocalUnlock
RemoveDirectoryA
TransmitCommChar
GetModuleHandleA
SetConsoleScreenBufferSize
LZCopy
GetEnvironmentVariableA
SetComputerNameExA
GetThreadSelectorEntry
GetFileTime
GetThreadContext
GetProfileIntA
GetProcessHandleCount
GetFileAttributesExA
GetConsoleAliasesA

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetSystemTime
timeGetTime

Exports

Exports

GetExdjerfe
EndTcbbutgvsy
Igftvoj
Vmiesjtcoa
Qkncvcy
IsFptsywolqi
CreateQyxkimke
Utetskx

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 132KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea1fd60ff2fcee84e2272c1a03f2f1fe

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Exports

Exports

Sections

.idata Size: - Virtual size: 3KB

.text Size: 132KB - Virtual size: 183KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.text
Size: 132KB - Virtual size: 183KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB