12eb9f724c60c8e72705e73e6df1431a_JaffaCakes118

General

Target

12eb9f724c60c8e72705e73e6df1431a_JaffaCakes118
Size

69KB
MD5

12eb9f724c60c8e72705e73e6df1431a
SHA1

b342fc4107183dfc3afbd89654ca758b5754e153
SHA256

a08e716b6169a0cfb86b90a2ef9548fddc03a783fbe28d6b224d7eed6609a0d6
SHA512

6465f71a20a8505f21df52061cff6d9e3840a28964beaed47914442e17194c8ecf816640eafff60c15ad1c01add7a8d7481bb6a2eacdbef71b9adff100b7e6c4
SSDEEP

1536:jefUnrJr84zgUGDHeD4C6eB2xc1aBd1q08khfBF:H84gIDBA3q0f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
12eb9f724c60c8e72705e73e6df1431a_JaffaCakes118

Files

12eb9f724c60c8e72705e73e6df1431a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

eb066aa20ac9bdfcdee2b9f7c554a3e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExpandedNameA
OpenJobObjectA
ReadConsoleInputA
OpenFile
ReadConsoleOutputCharacterA
GetCompressedFileSizeA
GetDiskFreeSpaceA
FindFirstChangeNotificationA
UpdateResourceA
VirtualAlloc
SetFileShortNameA
GetCalendarInfoA
FindResourceW
lstrcmpi
LoadLibraryExW
WriteConsoleInputA
GetProcessTimes
GetVersionExA
GetProcessVersion
GetCommModemStatus
CreateFileMappingA
LZOpenFileA
GetCommandLineA

user32

SendIMEMessageExA
CheckMenuRadioItem
GetUserObjectInformationW
GetThreadDesktop
GetWindowLongA
ReleaseDC
BroadcastSystemMessageA
LoadMenuA
GetActiveWindow
GetWindowTextW
DestroyMenu
OffsetRect
SendDlgItemMessageA
AnimateWindow
BuildReasonArray
DefFrameProcA
UnregisterDeviceNotification

Exports

Exports

Cykhdxjnen
SetYmdrkdsra
Xwdysllpllo
Ocnwpmtip
Hbwxpwf
Blckwvkhly
Amdilbmulg
Ysklyctrx
AddRhnrxhf
Bpkcnkjgcn
Qglvfcqahms
Xcnejrt
ReadUrfblghdpe
IsFplmorfgqnj
Flyksonttkd
GetCyudhetfqbp
Dpvbycst
EndJhfcktuasds
AddBdswvxpp
Rbshgbix

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb066aa20ac9bdfcdee2b9f7c554a3e5

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 38KB

.data Size: 4KB - Virtual size: 91KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 39KB - Virtual size: 38KB

.data
Size: 4KB - Virtual size: 91KB

.rsrc
Size: 25KB - Virtual size: 24KB