JaffaCakes118_9a81c39e295232f87c93e35106646293d7b0e24d23021fb5dfc75240e0bd3257

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_9a81c39e295232f87c93e35106646293d7b0e24d23021fb5dfc75240e0bd3257
Size

406KB
MD5

5578e6e62c21c4efb27a490f96b3021d
SHA1

b274063f380e62142c071b0a562bc1286611c1e5
SHA256

9a81c39e295232f87c93e35106646293d7b0e24d23021fb5dfc75240e0bd3257
SHA512

e7e771fcb7c9836952640ea79b2f916f688ddfaa19edd08971d4aaa8835e6df661dd330605cdf333bc3c136319882a8ae45a8f2c86219907d18bc4a768ad005d
SSDEEP

12288:3x30YI5yikEydaz8WavBYFTqaWSjV6eQN:B3s0Lava64afnQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9a81c39e295232f87c93e35106646293d7b0e24d23021fb5dfc75240e0bd3257

Files

JaffaCakes118_9a81c39e295232f87c93e35106646293d7b0e24d23021fb5dfc75240e0bd3257
.exe windows:5 windows x86 arch:x86

f2673d9c17d44833382f98a82bef63bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\muwujof puwabop\vayuzu\wijazikomega\kom.pdb

Imports

kernel32

GetSystemTimeAdjustment
FindNextVolumeA
LeaveCriticalSection
GetNamedPipeHandleStateW
FileTimeToLocalFileTime
ExitProcess
GetCurrentProcessId
GetVersionExW
EnumDateFormatsExW
FillConsoleOutputCharacterA
EnumResourceNamesA
FindNextFileA
CopyFileExW
BuildCommDCBAndTimeoutsA
SetDefaultCommConfigA
WritePrivateProfileStructW
HeapSetInformation
CreateTimerQueue
ReadConsoleInputA
GetVersionExA
GetSystemDirectoryW
GetDriveTypeA
GetProcAddress
LoadLibraryA
GlobalAlloc
VerifyVersionInfoA
GetBinaryTypeA
GetProfileSectionW
InterlockedDecrement
ReadConsoleOutputCharacterA
FindFirstChangeNotificationW
FormatMessageW
SetDllDirectoryW
GetQueuedCompletionStatus
WritePrivateProfileStringA
GetConsoleAliasesLengthW
GetProcessHeap
OpenWaitableTimerA
UnlockFile
InterlockedIncrement
GetStartupInfoW
GetSystemWow64DirectoryW
GetConsoleAliasExesW
ContinueDebugEvent
EndUpdateResourceW
SetLastError
FatalAppExitA
SetSystemTime
OpenFileMappingA
lstrcmpW
TerminateThread
SetConsoleActiveScreenBuffer
SetDefaultCommConfigW
VirtualFree
InterlockedCompareExchange
GlobalUnfix
GetSystemWindowsDirectoryA
CopyFileW
TerminateProcess
GetACP
FindAtomA
lstrcatW
HeapWalk
SetMailslotInfo
CreateActCtxA
_lread
GetOverlappedResult
CreateNamedPipeW
GetAtomNameA
SetConsoleScreenBufferSize
EnumResourceTypesW
lstrlenA
EndUpdateResourceA
WriteConsoleA
VirtualProtect
lstrcpyA
ReadConsoleOutputA
SetThreadContext
BuildCommDCBW
ReleaseActCtx
GetStringTypeW
GetPrivateProfileStringW
GetFileAttributesW
GetVolumePathNameA
MoveFileW
SetCommMask
SetFileShortNameA
VerLanguageNameA
LockFile
EnumDateFormatsA
ProcessIdToSessionId
PostQueuedCompletionStatus
FreeConsole
GlobalGetAtomNameW
SetComputerNameA
GetConsoleAliasExesLengthW
WriteConsoleInputW
CreateMailslotA
TzSpecificLocalTimeToSystemTime
SetLocalTime
GetStringTypeExW
EnumSystemLocalesW
CallNamedPipeA
GetConsoleAliasExesLengthA
FindActCtxSectionGuid
CopyFileA
ResetWriteWatch
GetPrivateProfileIntW
GetModuleHandleW
GetTickCount
GetModuleFileNameA
OpenWaitableTimerW
GetConsoleAliasesLengthA
GlobalUnWire
FillConsoleOutputCharacterW
GetCompressedFileSizeW
SetThreadPriority
MapUserPhysicalPages
WriteConsoleOutputCharacterA
EnumDateFormatsW
QueryInformationJobObject
CreateFileW
GetDateFormatW
RaiseException
HeapValidate
IsBadReadPtr
DeleteCriticalSection
EnterCriticalSection
GetModuleFileNameW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
Sleep
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetLastError
HeapDestroy
HeapCreate
HeapFree
WriteFile
HeapAlloc
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
RtlUnwind
InitializeCriticalSectionAndSpinCount
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetLocaleInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
GetConsoleOutputCP
CreateFileA
CloseHandle
FlushFileBuffers

Sections

.text
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 195KB - Virtual size: 446KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2673d9c17d44833382f98a82bef63bb

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

Sections

.text Size: 146KB - Virtual size: 146KB

.data Size: 195KB - Virtual size: 446KB

.rsrc Size: 64KB - Virtual size: 63KB

.text
Size: 146KB - Virtual size: 146KB

.data
Size: 195KB - Virtual size: 446KB

.rsrc
Size: 64KB - Virtual size: 63KB