78510b16fcd5768107335cf3b53751ac_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

78510b16fcd5768107335cf3b53751ac_JaffaCakes118
Size

1.7MB
MD5

78510b16fcd5768107335cf3b53751ac
SHA1

a01acd19ee5baac850e2d084af6b78c97c454dce
SHA256

5f667f10ca2cca1192b56f82bae91803d5e1511d4c6dfd6b17146ddaf7e7c812
SHA512

21c3b73925d00fed92899aa27162e48e636a9bf0bc23b0f01d44fdeb379b525d808cc6d0fd7d18733d3160e9769da1739e4668cab9343f2beb70e8e1de7ad9ed
SSDEEP

24576:0tOE4dvuLLP+1o854au4bnFzSMVvZDP7ZxsOzTa94kN:0tOrd1TwKZz7rs+2+k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78510b16fcd5768107335cf3b53751ac_JaffaCakes118

Files

78510b16fcd5768107335cf3b53751ac_JaffaCakes118
.exe windows:5 windows x86 arch:x86

166001dad8803bdefba2799d4850b860

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdsapi

DsBindW

kernel32

GlobalAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseSemaphore
SetHandleCount
MulDiv
GetSystemTime
GetSystemTimeAsFileTime
GetLocalTime
FileTimeToLocalFileTime
lstrcmpW
lstrlenW
ReadFileScatter
CreateFileW
FindNextChangeNotification
FindCloseChangeNotification
GetVersionExW
VerifyVersionInfoW
IsValidCodePage
LCMapStringW
EnumDateFormatsExW
GetStringTypeW
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetCurrentProcessId
HeapSize
HeapReAlloc
HeapAlloc
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
GetCPInfo
GetOEMCP
GetACP
IsDebuggerPresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
CloseHandle
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
QueryPerformanceCounter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameW
WriteFile
GetEnvironmentStringsW

user32

GetDC
GetMessageW
DefWindowProcW
GetClassInfoW
DdeQueryNextServer
DdeInitializeW
GetParent
GetWindowLongW
EqualRect
ClientToScreen
SetCursor
SetCursorPos
AdjustWindowRect
GetWindowTextW
GetScrollRange
GetScrollPos
InvalidateRect
EndPaint
GetWindowDC
GetDCEx
GetKeyboardLayoutList
GetMenuItemInfoW
GetMenuCheckMarkDimensions
EnableMenuItem
CreatePopupMenu
CreateMenu
LoadAcceleratorsW
GetKeyboardType
GetActiveWindow
CharPrevW
CharUpperW
RegisterClipboardFormatW
GetDialogBaseUnits
IsDlgButtonChecked
GetDlgItemInt
DialogBoxParamW
CreateDialogParamW

advapi32

OpenSCManagerW

wininet

InternetOpenW
HttpSendRequestW
InternetCrackUrlW
InternetQueryOptionW

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 729KB - Virtual size: 7.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tn414
Size: 514KB - Virtual size: 513KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.8i2g
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.y5o1b
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9vhgef
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

166001dad8803bdefba2799d4850b860

Headers

File Characteristics

Imports

ntdsapi

kernel32

user32

advapi32

wininet

Sections

.text Size: 135KB - Virtual size: 134KB

.data Size: 729KB - Virtual size: 7.7MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.tn414 Size: 514KB - Virtual size: 513KB

.8i2g Size: 164KB - Virtual size: 163KB

.y5o1b Size: 85KB - Virtual size: 84KB

.9vhgef Size: 90KB - Virtual size: 89KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 135KB - Virtual size: 134KB

.data
Size: 729KB - Virtual size: 7.7MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.tn414
Size: 514KB - Virtual size: 513KB

.8i2g
Size: 164KB - Virtual size: 163KB

.y5o1b
Size: 85KB - Virtual size: 84KB

.9vhgef
Size: 90KB - Virtual size: 89KB

.rsrc
Size: 4KB - Virtual size: 4KB