3c6e23b27e50c34f1aa8d8435082420e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c6e23b27e50c34f1aa8d8435082420e_JaffaCakes118
Size

147KB
MD5

3c6e23b27e50c34f1aa8d8435082420e
SHA1

3d54bf2610dc3fc93ec13c438a3a20a8b8d4e910
SHA256

ca1d9a2a7aff6461cabb5579159e438efe56b672c41cba1c19e6a8a13ff26e22
SHA512

0c9f6806866187f46b8d991c5a49b00a7dd6e2091057986b375493f2917d852025dad6a5a92f8a10885e3ad61869f69a92846cb38110633c93e12e088dcae27c
SSDEEP

3072:3rA6jP1cFyIa4xiq+CtKaG2eCt4onlrrX:3rIFoQtlGwiU9X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c6e23b27e50c34f1aa8d8435082420e_JaffaCakes118

Files

3c6e23b27e50c34f1aa8d8435082420e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

128d3656cfbc503e89c20c04ef7bbcf0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetWindowsDirectoryA
CreateFileA
LoadLibraryW
MulDiv
GetACP
GetACP
GetACP
GetVersion
MulDiv
_lread

secur32

ApplyControlToken
ApplyControlToken

mpr

WNetGetConnectionA
WNetGetConnectionW
WNetGetDirectoryTypeA
WNetGetDirectoryTypeA
WNetGetHomeDirectoryW
WNetGetLastErrorA
WNetGetLastErrorW
WNetGetNetworkInformationA
WNetGetNetworkInformationW
WNetGetPropertyTextA
WNetGetPropertyTextW
WNetGetProviderNameA
WNetGetProviderNameW
WNetGetProviderTypeA
WNetGetProviderTypeW
WNetGetResourceInformationA
WNetGetResourceInformationW
WNetGetResourceParentA
WNetGetResourceParentW
WNetGetSearchDialog
WNetGetUniversalNameA
WNetGetUniversalNameW
WNetGetUserA
WNetGetUserW
WNetLogonNotify
WNetOpenEnumA
WNetOpenEnumW
WNetPasswordChangeNotify
WNetPropertyDialogA
WNetPropertyDialogW
WNetSetConnectionA
WNetSetConnectionW
WNetSetLastErrorA
WNetSetLastErrorW

polstore

IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy
IPSecAssignPolicy

Sections

.sql
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

sty
Size: 6KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

priko
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

trans
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

veli
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

128d3656cfbc503e89c20c04ef7bbcf0

Headers

File Characteristics

Imports

kernel32

secur32

mpr

polstore

Sections

.sql Size: 4KB - Virtual size: 5KB

sty Size: 6KB - Virtual size: 93KB

priko Size: 131KB - Virtual size: 131KB

trans Size: 512B - Virtual size: 512B

veli Size: 512B - Virtual size: 512B

.sql
Size: 4KB - Virtual size: 5KB

sty
Size: 6KB - Virtual size: 93KB

priko
Size: 131KB - Virtual size: 131KB

trans
Size: 512B - Virtual size: 512B

veli
Size: 512B - Virtual size: 512B