2d718d65582a5abf26f4636edeeb911a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2d718d65582a5abf26f4636edeeb911a_JaffaCakes118
Size

324KB
MD5

2d718d65582a5abf26f4636edeeb911a
SHA1

0ce8164d980b9259409fac121a2d58d5ae35ee20
SHA256

8ef35af3cab74363c68ced7b75159cab84d1ce3f165dbe25e5ba90f81afb5286
SHA512

8da420f25d0a22006933fc75f66b715d00956d9e3ea658644c1e47d7587ac31b8eca57f58b6dcb1f3c89bfe554647157e84078e4d70eb42f662d41bbbf6044e0
SSDEEP

6144:4OE1FO0Bi9JK/8qjHDe6QNUbKRK/tu8pIar2kqdCnCQ2Lw85vKoMow8oelUV:4OWY0BijK/7HD2eLtu8Oait42Lwjom0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d718d65582a5abf26f4636edeeb911a_JaffaCakes118

Files

2d718d65582a5abf26f4636edeeb911a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5c3dfa0b56e9550341c7f15d8f5b8aff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessTimes
SetCommMask
CompareStringW
WaitCommEvent
WriteFile
LCMapStringA
InterlockedCompareExchange
GlobalFree
InterlockedDecrement
OpenMutexA
ExitProcess
GlobalHandle
LockFile
EnterCriticalSection
FindFirstChangeNotificationA
CompareFileTime
GetVersionExW
GetStringTypeA
lstrcmpiW
SetConsoleScreenBufferSize
GetCompressedFileSizeW
ReadConsoleInputW
GetPrivateProfileSectionNamesA
WriteProfileStringW
GetConsoleCP
lstrcatW
EnumCalendarInfoW
CreateFileW
GetSystemDirectoryW
WriteFileEx
GetBinaryTypeW
GetProcessAffinityMask
HeapReAlloc
CallNamedPipeA
SetProcessShutdownParameters
GlobalGetAtomNameW
GetComputerNameW
lstrlenA
GetFileAttributesExA
MoveFileW
GetProcessWorkingSetSize
GetPrivateProfileStringW
SetThreadAffinityMask
GetModuleFileNameW
GetVersionExA
SetStdHandle
FindNextFileW
VirtualAlloc
SetLocalTime
FindResourceA
GetLongPathNameA
FillConsoleOutputCharacterA
GetCommandLineA
VirtualProtect
ExpandEnvironmentStringsA

user32

CharLowerBuffW
SetTimer
GetMenuItemID
CloseClipboard
MessageBoxIndirectW
CharPrevW
OemToCharBuffW
InternalGetWindowText
EndMenu
GetWindow
VkKeyScanA
SetSysColors
CreateDesktopA
SendMessageA
VkKeyScanW
SetCursorPos
CharLowerA
RegisterDeviceNotificationA
SetCapture
SetRectEmpty
MapWindowPoints
ToUnicodeEx
WaitForInputIdle
DialogBoxParamA
SendNotifyMessageA
MonitorFromPoint

gdi32

LineDDA
CreateDIBPatternBrush
StartPage
PlayMetaFile
DeleteDC
DescribePixelFormat
CreatePatternBrush
GetSystemPaletteUse
CreateDIBSection
GdiFlush
GetWindowOrgEx

comdlg32

GetFileTitleW

advapi32

NotifyBootConfigStatus
RegNotifyChangeKeyValue
QueryServiceConfigA
GetUserNameA
CreatePrivateObjectSecurity
RegCreateKeyExW
AdjustTokenPrivileges
SetSecurityInfo
AbortSystemShutdownW
GetSecurityDescriptorGroup
DuplicateTokenEx
CreateServiceA
LookupPrivilegeValueW
IsValidSecurityDescriptor
RegConnectRegistryW
LookupAccountNameA
SetServiceStatus
CryptGenKey
QueryServiceLockStatusW
RegEnumValueA
MakeSelfRelativeSD
IsValidAcl
RegDeleteValueA
RegLoadKeyA
LookupAccountSidA
SetTokenInformation
GetUserNameW
SetPrivateObjectSecurity
DeleteAce
RegReplaceKeyW
ClearEventLogW
IsValidSid
BuildTrusteeWithNameW
DestroyPrivateObjectSecurity
RegSaveKeyW
SetEntriesInAclA
CryptDestroyKey

ole32

WriteClassStg
OleInitialize
IsAccelerator
StgCreateDocfileOnILockBytes
OleBuildVersion

oleaut32

SafeArrayCreate
VariantChangeType
DispGetIDsOfNames
QueryPathOfRegTypeLi
GetActiveObject

shlwapi

SHRegCreateUSKeyW
StrRetToBufW
PathIsRootA
SHCopyKeyA
UrlApplySchemeW

setupapi

SetupDiGetClassDevsExW
SetupFindFirstLineW
SetupDiSetSelectedDevice
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupLogErrorA
SetupDiClassNameFromGuidW
SetupDiBuildDriverInfoList
SetupDiGetDeviceRegistryPropertyW
SetupDiSetClassInstallParamsA

Sections

.text
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5c3dfa0b56e9550341c7f15d8f5b8aff

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 284KB - Virtual size: 283KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 28KB - Virtual size: 27KB

.text
Size: 284KB - Virtual size: 283KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 28KB - Virtual size: 27KB