2eb77a90ac68f75c134eb368f5fb05d8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2eb77a90ac68f75c134eb368f5fb05d8_JaffaCakes118
Size

144KB
MD5

2eb77a90ac68f75c134eb368f5fb05d8
SHA1

3195e0181efb626806fec22397347b8f72a0a6a0
SHA256

af14fb30cfadd156d9a186a4591d833861470b921d88b24fae648822e011418f
SHA512

c303079052bbc4767db19f227be61a88ef7b8978ce9513da74c2add5da32d094b749961f302cabea5db79acb6a6a5943d697cb386f33ad4e75414e0f5ffc0172
SSDEEP

3072:mfw3C+h244wIvoMcOMpRrwy7AfL/3Ua2gYqXmWvENhv6Qz5gHKv:mfeC+hFlIvoMc7RA/35npshSI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2eb77a90ac68f75c134eb368f5fb05d8_JaffaCakes118

Files

2eb77a90ac68f75c134eb368f5fb05d8_JaffaCakes118
.dll windows:4 windows x86 arch:x86

5048ea8a2087f28554618852ed169e9f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateFileMappingA
GetFileInformationByHandle
FlushConsoleInputBuffer
RegisterWaitForSingleObject
SetThreadAffinityMask
SetEnvironmentVariableA
GetProcessId
GetPriorityClass
ChangeTimerQueueTimer
GetFileAttributesA
GetConsoleTitleA
WriteConsoleA
ReleaseMutex
LZOpenFileA
WriteFile
GetProfileStringA
GetCurrentThread
OpenProfileUserMapping
Module32First
GetSystemDirectoryA
FindNextVolumeMountPointW
FindNextVolumeA
_lread
GetProcessHeap
GetNumberOfConsoleInputEvents
GetExitCodeProcess
TransmitCommChar
GetCommState
WriteProfileStringA
GetFileSizeEx
GetConsoleAliasesA
SetProcessPriorityBoost
GetCommProperties
GetComputerNameA
UnlockFileEx
GetFileAttributesExA
WriteConsoleOutputCharacterA
GetThreadSelectorEntry
SetDllDirectoryA
SetVolumeMountPointA
WriteConsoleInputA
EnumTimeFormatsA
OpenJobObjectA
GetFullPathNameA
GetEnvironmentVariableA
IsDebuggerPresent
ReadConsoleOutputCharacterA
GetLocaleInfoA
GetCurrentThread
IsSystemResumeAutomatic
GetVolumePathNameA
SetHandleCount
LoadModule
GetTickCount
ReadConsoleA
SetFilePointerEx
lstrcpyn
VirtualAlloc
SetTapePosition
EnumSystemLanguageGroupsA
UpdateResourceA
QueryInformationJobObject
Thread32Next
HeapSetInformation
SetFilePointer
DefineDosDeviceA
GetLogicalDrives
GetFileAttributesExA
GetCommTimeouts
FreeEnvironmentStringsA
HeapSize

wininet

FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW

winmm

timeGetTime
timeGetSystemTime

Exports

Exports

InitKlmbaqftkx
ReadKbpxgdtdo
Iyameobgb
Ijwxkdvqnw
OpenCuhmaulw
Wsloblp
Hhedoqu
Fppbxwjt

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 132KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5048ea8a2087f28554618852ed169e9f

Headers

File Characteristics

Imports

kernel32

wininet

winmm

Exports

Exports

Sections

.idata Size: - Virtual size: 3KB

.text Size: 132KB - Virtual size: 183KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.text
Size: 132KB - Virtual size: 183KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB