8acc28f9ee5ae7622eaed8bd44db8f83_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8acc28f9ee5ae7622eaed8bd44db8f83_JaffaCakes118
Size

501KB
MD5

8acc28f9ee5ae7622eaed8bd44db8f83
SHA1

55d37c13981270c4969bdfe197e95c010404b356
SHA256

4eadf96854dcb4e9d8fe48d250064754a4aea886eb38c3697b2b462233a123a3
SHA512

0e40016059c722d94614d3b11c1bdada6fb7331976f6fbfd3fae986a534e23a69d9bda7736387badf5c32beebe3b426d2e6f934e85c2b77dfa2cb1b96118f665
SSDEEP

6144:1uXE99GmT1EoTfdO5ke0CZz7rjnRsc2O1:AXE99GmT1EoTGnzRj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8acc28f9ee5ae7622eaed8bd44db8f83_JaffaCakes118

Files

8acc28f9ee5ae7622eaed8bd44db8f83_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fe653b321ebf2d879e81767421a9dbc1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

wehjWEJHwle#L;.pdb

Imports

crypt32

CryptInstallDefaultContext

urlmon

CoInternetIsFeatureEnabledForUrl

advapi32

RevertToSelf
RegSetKeySecurity

secur32

MakeSignature

msvfw32

ICCompressorFree

rasapi32

RasDeleteEntryW

oleaut32

SafeArrayLock

ole32

CoGetObject

ntdsapi

DsBindWithCredA

gdi32

FrameRgn
EnumFontsA
EndPage

setupapi

SetupGetLineTextA
SetupDiBuildClassInfoListExW

ws2_32

listen

kernel32

VerifyScripts
GetDefaultCommConfigA
TzSpecificLocalTimeToSystemTime
GetModuleHandleA
RemoveVectoredExceptionHandler

shlwapi

StrChrA
AssocQueryStringW
StrChrNW

user32

IsCharLowerW
TrackPopupMenuEx
ModifyMenuA
GetParent
SetUserObjectInformationW

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 242KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Z
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6FXU
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe653b321ebf2d879e81767421a9dbc1

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

crypt32

urlmon

advapi32

secur32

msvfw32

rasapi32

oleaut32

ole32

ntdsapi

gdi32

setupapi

ws2_32

kernel32

shlwapi

user32

Sections

.text Size: 148KB - Virtual size: 147KB

.data Size: 242KB - Virtual size: 247KB

.idata Size: 1KB - Virtual size: 1KB

Z Size: 33KB - Virtual size: 32KB

6FXU Size: 47KB - Virtual size: 46KB

.rsrc Size: 1024B - Virtual size: 680B

.reloc Size: 28KB - Virtual size: 27KB

.text
Size: 148KB - Virtual size: 147KB

.data
Size: 242KB - Virtual size: 247KB

.idata
Size: 1KB - Virtual size: 1KB

Z
Size: 33KB - Virtual size: 32KB

6FXU
Size: 47KB - Virtual size: 46KB

.rsrc
Size: 1024B - Virtual size: 680B

.reloc
Size: 28KB - Virtual size: 27KB