0e75d8bbdb8910d80b6fb697c7996729_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0e75d8bbdb8910d80b6fb697c7996729_JaffaCakes118
Size

24KB
MD5

0e75d8bbdb8910d80b6fb697c7996729
SHA1

5332dad54024e114c66636b3bbe8c18cdd63a0b9
SHA256

b788f8e3047dfef52a374aca111ed6eb9949a084dfadd66bd990b1fcfd467d47
SHA512

888dbb3ba077b1b2eb1249db1dbacf268ad09a7c4142a9b143e40421f8487a654eabd7afec0e4cbe47bce7ee566c755069e6710d3864753fc21d61af65d2db87
SSDEEP

384:14hEzhAzNPgoMC06j2TQM8zsGwmkI21TBlGZaARnO7SX03F+ygvEhCz:1rzh2vMC4pilCdoZaKO7W0V+ygh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e75d8bbdb8910d80b6fb697c7996729_JaffaCakes118

Files

0e75d8bbdb8910d80b6fb697c7996729_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d0e82feef2540da4f9304c560e76c52c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetLogicalDrives
GetTapeStatus
OpenSemaphoreA
DuplicateHandle
FillConsoleOutputAttribute
SetVDMCurrentDirectories
GetVolumePathNamesForVolumeNameA
FindResourceExW
SystemTimeToFileTime
TerminateThread
IsBadStringPtrA
GetModuleFileNameA
WritePrivateProfileSectionA
SetCalendarInfoA
BeginUpdateResourceA
UnmapViewOfFile
GetThreadPriority
ReadConsoleA
GetCommandLineA
GetDiskFreeSpaceExA
SetFileShortNameA
FindFirstFileExA
SetConsoleNumberOfCommandsA
SetCommConfig
FlushConsoleInputBuffer
EnumSystemGeoID
SetEndOfFile
GetVolumePathNameA
EndUpdateResourceA
GetLogicalDriveStringsA
GetThreadPriorityBoost
ReadConsoleOutputAttribute
DeleteTimerQueue
OpenEventA
GetConsoleTitleA
ReadConsoleInputA
MapViewOfFileEx
QueryPerformanceCounter
ConnectNamedPipe
GetFileAttributesExA
SetDllDirectoryA
GetComputerNameExA
MapUserPhysicalPages
GetComputerNameA
GlobalFindAtomA
SetConsoleInputExeNameA
SetLocalTime
WriteProcessMemory
GetConsoleScreenBufferInfo
GetThreadTimes
CreateFileMappingA
GetCalendarInfoA
GetVersion
RequestWakeupLatency
GetCommProperties
GetProcessId
SetConsoleMenuClose
_lread
IsBadCodePtr
GetConsoleTitleA
GetConsoleCharType
GetProcessShutdownParameters
SetVolumeMountPointA
SetCurrentDirectoryA
PostQueuedCompletionStatus
SetFileAttributesA
SetProcessWorkingSetSize
ReadConsoleOutputCharacterA
DisconnectNamedPipe
FillConsoleOutputCharacterA
SetDefaultCommConfigA
GetFileAttributesExA
GetCurrentProcess
GetDevicePowerState
VirtualFree
AddConsoleAliasA
GetVolumeInformationA
GetExitCodeThread
SetThreadAffinityMask
FillConsoleOutputCharacterW
TransmitCommChar
Heap32First
WaitNamedPipeA
HeapQueryInformation
GetCommModemStatus
GenerateConsoleCtrlEvent
GlobalFlags
WriteConsoleOutputA
MultiByteToWideChar
GetConsoleInputWaitHandle
ChangeTimerQueueTimer
GetCurrentProcessId
GetProcAddress
OpenJobObjectA
GetProcessWorkingSetSize
IsBadStringPtrA
GetCurrencyFormatA
GetFileTime
SetPriorityClass
GetDriveTypeA
GetConsoleCursorInfo
VirtualAlloc
ResumeThread
GetProfileStringA
ReadConsoleOutputCharacterA

dhcpcsvc

DhcpUndoRequestParams

d3d8

DebugSetMute

user32

InsertMenuItemA
CharToOemBuffA
TranslateMessage
DefDlgProcA
LoadIconA
EnumPropsExA
CascadeChildWindows
EnumDesktopsA
KillTimer
InsertMenuA
AppendMenuA
GetScrollRange
ToAsciiEx
IsCharLowerA
InsertMenuItemA
NotifyWinEvent
LockSetForegroundWindow
MapVirtualKeyExA
CreateCaret
LoadCursorFromFileA
ModifyMenuA
DrawMenuBar
SubtractRect
GetLastActivePopup
SetProcessWindowStation
GetAltTabInfoA
IsRectEmpty
MonitorFromPoint
OemToCharBuffW
DragDetect
MapDialogRect
CallMsgFilter
EnumWindowStationsA
SetCaretBlinkTime
ScrollDC
LoadCursorFromFileW
CreateAcceleratorTableA
IsGUIThread
GetRawInputDeviceInfoA
SendInput
ShowWindowAsync
SetSystemMenu
SetWindowWord
ChangeDisplaySettingsExA
DispatchMessageA
GetRawInputDeviceList
UnpackDDElParam
IsServerSideWindow
OpenWindowStationA
EndMenu
RegisterRawInputDevices
UpdateWindow
CreateWindowStationW
AppendMenuA
LoadKeyboardLayoutA
CheckMenuItem
MenuItemFromPoint
ReplyMessage
GetListBoxInfo
LoadKeyboardLayoutEx
GetMenuDefaultItem
HiliteMenuItem
EnumDisplayMonitors
GrayStringA
CharLowerBuffA
GetClassNameA
SetSysColorsTemp
GetAncestor
GetSysColorBrush
GetClipboardOwner
ReuseDDElParam
GetClipboardFormatNameA
SendIMEMessageExA
DeleteMenu
MessageBoxTimeoutW
SetWindowLongA
SetMessageExtraInfo
GetKBCodePage
CreateAcceleratorTableA
CreateWindowStationA
DialogBoxIndirectParamA
MapVirtualKeyExA
CheckMenuItem
GetTabbedTextExtentA
CreatePopupMenu
TranslateAcceleratorA
CharUpperA
LoadKeyboardLayoutEx
GetUpdateRect
RegisterUserApiHook
SetProgmanWindow
CloseWindowStation
GetSystemMetrics
CloseWindow
SendMessageTimeoutW
GetMenu
MessageBoxTimeoutA
SetScrollPos
SetMessageExtraInfo
FindWindowExA
GetCursor

crypt32

CertSerializeCertificateStoreElement

d3d9

Direct3DCreate9

odbc32

SQLExecute
SQLSetStmtAttr

Exports

Exports

Bjvqnnrf
Gkmbmthusd
Bvcxfqm
Vvbisjesfrb
Rphsmttlc
EndOutwrnqei
Lrmqcbj
Kfchsdktjv
Aaxjuwsgbn
WriteAggvhko
CreateHknpjji
Axlnmqbdqs
Qeahdhlbdlr
Dpdbxao
OpenYktmwyq
Mbxtiywrspq
InitPyrcajnsvfx
Sclrdjjjfd

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d0e82feef2540da4f9304c560e76c52c

Headers

File Characteristics

Imports

kernel32

dhcpcsvc

d3d8

user32

crypt32

d3d9

odbc32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 1024B - Virtual size: 600B

.idata Size: 5KB - Virtual size: 5KB

.rdata Size: 5KB - Virtual size: 18KB

.edata Size: 512B - Virtual size: 448B

.rsrc Size: 1024B - Virtual size: 21KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 1024B - Virtual size: 600B

.idata
Size: 5KB - Virtual size: 5KB

.rdata
Size: 5KB - Virtual size: 18KB

.edata
Size: 512B - Virtual size: 448B

.rsrc
Size: 1024B - Virtual size: 21KB