dbf517a2f5814039ffd12dbd0dd1415e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dbf517a2f5814039ffd12dbd0dd1415e_JaffaCakes118
Size

147KB
MD5

dbf517a2f5814039ffd12dbd0dd1415e
SHA1

e994fc9807f81f657040f92d57a2143b7aa01749
SHA256

aa691fc0b9635943ee699e1261791a5989285ebc860c67954d7af547b8d9f1b0
SHA512

e84636a4353b420cb27048eb827826454cea9d41b0dee9ea35049087f1bf00e117f44b5cfbe96f865d907f462d6d37cc211c891455549bd50044ed4c5e9682be
SSDEEP

3072:X4qh+SZieevURWyuDZvP9lYYWrbbHeiWH0k6wmxik6gKLM8XFmg0:KK105yuDZv1OYWviuRik6pLvF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbf517a2f5814039ffd12dbd0dd1415e_JaffaCakes118

Files

dbf517a2f5814039ffd12dbd0dd1415e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9f7cb21b5f618eacedf5e0c75001dcb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetLocalTime
LeaveCriticalSection
GetModuleHandleA
GetLogicalDrives
GetStartupInfoA
GetCPInfo
ResumeThread
ReadConsoleInputA
Beep
GetTimeZoneInformation
ReadConsoleA
CreateFileA
CreateThread
PeekConsoleInputA
GetCurrentProcess
GetFullPathNameA
FindClose
GetProcAddress
GetModuleFileNameW
GetDriveTypeA
GetSystemDefaultLCID
GetCommandLineA
QueryPerformanceCounter
TlsAlloc
LoadLibraryW
SetConsoleCtrlHandler
IsBadCodePtr
CloseHandle
GetStdHandle
GetDriveTypeW
LockFile
GetCurrentThread
GetCurrentDirectoryA
FindFirstFileW
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
RtlUnwind
ReadFile
IsValidCodePage
GetFileAttributesW
GetSystemDefaultLangID
LocalFileTimeToFileTime
SetFileAttributesW
FileTimeToSystemTime
FlushFileBuffers
FileTimeToLocalFileTime
VirtualFree
IsBadWritePtr
SetFileAttributesA
TlsGetValue
WriteFile
GetFileType
GetFileInformationByHandle
GetFileAttributesA
GetFullPathNameW
EnterCriticalSection
GetVersion
SystemTimeToFileTime
GetEnvironmentStrings
SetFilePointer
MultiByteToWideChar
DeleteCriticalSection
GetExitCodeProcess
GetDiskFreeSpaceA
FindNextFileA
CreateFileW
SetFileTime
RemoveDirectoryW
DuplicateHandle
GetUserDefaultLCID
WaitForSingleObject
FreeLibrary
RemoveDirectoryA
GetNumberOfConsoleInputEvents
CreateDirectoryW
GetModuleFileNameA
FindFirstFileA
SetLocalTime
FindNextFileW
GetCurrentDirectoryW
DeleteFileA
RaiseException
GetConsoleMode
CreatePipe
SetEnvironmentVariableW
GetLastError
SetEndOfFile
GetACP
CreateDirectoryA
SetUnhandledExceptionFilter
TlsSetValue
WriteConsoleA
InitializeCriticalSection
SetCurrentDirectoryW
SetStdHandle

user32

MessageBoxA

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 14KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f7cb21b5f618eacedf5e0c75001dcb2

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 83KB - Virtual size: 83KB

.idata Size: 25KB - Virtual size: 25KB

.idata Size: 14KB - Virtual size: 42KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 83KB - Virtual size: 83KB

.idata
Size: 25KB - Virtual size: 25KB

.idata
Size: 14KB - Virtual size: 42KB

.rsrc
Size: 23KB - Virtual size: 23KB