8b42e2df92ee499d9d30d395d75aa12c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8b42e2df92ee499d9d30d395d75aa12c_JaffaCakes118
Size

152KB
MD5

8b42e2df92ee499d9d30d395d75aa12c
SHA1

dd54954be7a73e1e7b3eab6bf986b827a5d148f3
SHA256

4085ec8f9762c46c3c4b55efdf2ddb0162a470872c241176eaa06a9c131d9b20
SHA512

6b76c843affb8aa519449cefce9ec4b19b6e48cd92046688d5356471c7bf4438082f29c4d776643d1eab764d8d1c5366ce0dc54eb72338f5304592a17eba9852
SSDEEP

3072:AtPm2wKCfLXi91ZLpiKLuT5A3wTlwd2S+P1f3LRZ9q52HHHHHHHHHHHHHHHj6bK:AtPmurBLYAmlwd2S+LRGbK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b42e2df92ee499d9d30d395d75aa12c_JaffaCakes118

Files

8b42e2df92ee499d9d30d395d75aa12c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d314ee10e92e3ac6ad5b343d4945137a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

MapDebugInformation
ImageGetDigestStream
ImageGetCertificateHeader
SymCleanup
ImageGetCertificateData
SymGetSearchPath
ImageEnumerateCertificates

advapi32

IsTextUnicode
RegOpenKeyExA
AccessCheck
EqualSid
RegOpenKeyExW
RegFlushKey
GetSecurityDescriptorOwner
DeleteService
RegOpenKeyW
MakeAbsoluteSD
GetSidSubAuthorityCount
GetFileSecurityA
RegEnumKeyA
RegGetKeySecurity
LookupAccountSidW
RegQueryValueExA
LsaQueryInformationPolicy
QueryServiceStatus
RegSetValueExW
SetTokenInformation
GetNamedSecurityInfoW
RegEnumKeyExA
RegCreateKeyExA
LockServiceDatabase
CopySid
IsValidSecurityDescriptor
LookupPrivilegeValueA
GetSidLengthRequired
RegDeleteKeyA
GetSecurityInfo
FreeSid
SetKernelObjectSecurity
PrivilegeCheck
GetSecurityDescriptorLength
QueryServiceConfigA
RegQueryValueExW
CloseServiceHandle
OpenServiceW
InitiateSystemShutdownA
MakeSelfRelativeSD
RegCreateKeyExW
ImpersonateSelf
DestroyPrivateObjectSecurity
GetKernelObjectSecurity
UnlockServiceDatabase
RegSaveKeyA
IsValidAcl
RevertToSelf
LsaOpenPolicy
RegDeleteValueW
InitializeSid
LsaClose
RegCreateKeyW
RegisterEventSourceW
ReportEventA
GetSidSubAuthority
RegCreateKeyA
LookupAccountNameW
ChangeServiceConfigW
RegisterServiceCtrlHandlerW
RegSetValueExA
AddAccessAllowedAce
GetSecurityDescriptorDacl
IsValidSid
GetLengthSid
RegDeleteValueA
RegQueryInfoKeyA
RegisterServiceCtrlHandlerA
RegQueryValueW
StartServiceW
DuplicateToken
OpenEventLogW
RegSetValueW
SetNamedSecurityInfoW
MapGenericMask
AbortSystemShutdownA
RegSetValueA
StartServiceCtrlDispatcherW
SetSecurityDescriptorSacl
SetSecurityDescriptorOwner
InitializeAcl
SetFileSecurityW
SetSecurityInfo
SetSecurityDescriptorGroup
RegisterEventSourceA
AllocateLocallyUniqueId
DeregisterEventSource
ReportEventW
LookupAccountSidA
GetFileSecurityW
RegEnumKeyExW
RegSetKeySecurity
SetServiceStatus
AdjustTokenPrivileges
EnumServicesStatusW
GetAce
GetSecurityDescriptorGroup
GetNamedSecurityInfoA
GetAclInformation
RegOpenKeyA
SetEntriesInAclA
SetSecurityDescriptorDacl
ImpersonateLoggedOnUser
GetSidIdentifierAuthority
AddAce
CloseEventLog
SetThreadToken
SetNamedSecurityInfoA
OpenServiceA
LookupPrivilegeValueW
RegCloseKey
GetTokenInformation
GetSecurityDescriptorSacl
LsaRetrievePrivateData
RegRestoreKeyA
AddAccessDeniedAce
RegConnectRegistryW
RegDeleteKeyW
SetFileSecurityA
LsaFreeMemory
LsaNtStatusToWinError
RegEnumValueW
OpenSCManagerW
QueryServiceConfigW
SetEntriesInAclW

user32

SetScrollRange
IsCharAlphaNumericA
ModifyMenuA
UnionRect
CharNextW
CreateAcceleratorTableA
PeekMessageA
FillRect
MapVirtualKeyW
ReleaseDC
LoadAcceleratorsW
CreateDialogParamA
ChildWindowFromPoint
MapDialogRect
BringWindowToTop
MessageBoxIndirectA
TrackPopupMenuEx
GetDialogBaseUnits
GetMenuItemID
DdeInitializeW
GetPropA
CountClipboardFormats
CreateCaret
IsCharAlphaA
IsChild
DispatchMessageW
GetMenuItemInfoA
SetWindowContextHelpId
IsMenu
GetClipboardFormatNameA
IsWindowEnabled
SendMessageTimeoutW
GetMessageW
LoadCursorW
SetWindowLongA
LoadBitmapA
GetKeyNameTextA
GetClientRect
FindWindowA
DestroyWindow
GetDlgItemTextA
IsCharUpperA
CharLowerW
GetMessageTime
CheckMenuRadioItem
ClientToScreen
DestroyCursor
DialogBoxParamW
DdeClientTransaction
SetRectEmpty
SetWindowPlacement
DeleteMenu
ShowWindowAsync
CharLowerA
GetScrollInfo
GetMessagePos
EndDialog
CopyImage
CloseWindowStation
GetIconInfo
SetActiveWindow
EndDeferWindowPos
GetWindow
MapVirtualKeyA
DrawFrameControl
GetDesktopWindow
IsZoomed
CloseWindow
SetCursorPos
DdeFreeStringHandle
SetClassLongA

kernel32

GlobalMemoryStatus
GetTempFileNameA
GetLocalTime
CreateSemaphoreW
CreateActCtxA
_lcreat
GetConsoleMode

winmm

midiInGetNumDevs
waveInClose
mixerOpen
mixerGetID
waveInGetDevCapsA
mmioDescend
midiOutGetDevCapsA
mmioClose
mmioRead
joyGetPosEx
auxGetNumDevs
joySetThreshold
mmioOpenA
joyGetNumDevs
mciSendCommandA
joyGetPos
waveOutPrepareHeader
midiOutOpen
waveOutGetNumDevs
midiInGetDevCapsA
timeSetEvent
midiInGetErrorTextA
mixerGetNumDevs
mixerSetControlDetails
timeGetSystemTime
mciGetDeviceIDA
sndPlaySoundA
mciSendStringA
mmioWrite
timeEndPeriod
mixerClose
mmioSeek
midiOutClose
timeKillEvent
waveOutWrite
timeGetDevCaps
mixerGetLineInfoW
OpenDriver
timeBeginPeriod
waveInGetErrorTextA
waveInOpen
waveOutGetDevCapsA
waveOutOpen
auxGetDevCapsA
mmioInstallIOProcA
waveInGetNumDevs
waveOutGetVolume
waveOutClose
joySetCapture
CloseDriver
mciGetErrorStringA
mixerGetControlDetailsA
SendDriverMessage
mixerGetDevCapsA
joyGetDevCapsA

version

GetFileVersionInfoA
VerQueryValueA
VerFindFileA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerInstallFileA

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d314ee10e92e3ac6ad5b343d4945137a

Headers

File Characteristics

Imports

imagehlp

advapi32

user32

kernel32

winmm

version

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 20KB - Virtual size: 48KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 20KB - Virtual size: 48KB

.rsrc
Size: 24KB - Virtual size: 20KB