3bbf1c9587676358ba76eeaf1c075669_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3bbf1c9587676358ba76eeaf1c075669_JaffaCakes118
Size

100KB
MD5

3bbf1c9587676358ba76eeaf1c075669
SHA1

09eb404d5992e163365da5701430ce4a0d009ba3
SHA256

e790c404483718ca765863b4079814c74a5da130a3dae0f1d2cd498908a53a91
SHA512

b8f9e07ae8b2d15f036fdc3e28ce1915c4bdb33b74ed0dcf592033459379f384949dd495800355395d1d58d09e0cd15bc2431e66f839236f3f92f3787db5dedf
SSDEEP

3072:rMAWWtSF8qrH2b2YS/rPJ779clhSoTXsgppttK:NQF8qh/j2hTRt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bbf1c9587676358ba76eeaf1c075669_JaffaCakes118

Files

3bbf1c9587676358ba76eeaf1c075669_JaffaCakes118
.exe windows:4 windows x86 arch:x86

47e7d35c27a7bb845bf14a2bf846f9b2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumePathNameA
OpenWaitableTimerA
SetThreadIdealProcessor
GetConsoleKeyboardLayoutNameA
GetVolumeNameForVolumeMountPointA
OpenSemaphoreA
SetComputerNameA
WriteConsoleOutputCharacterA
GetConsoleMode
ReleaseSemaphore
IsDebuggerPresent
SleepEx
GetLongPathNameA
GetVolumeInformationA
GetVDMCurrentDirectories
lstrcmpA
GetDiskFreeSpaceA
FindNextVolumeMountPointW
GetCurrentThreadId
CancelWaitableTimer
FlushConsoleInputBuffer
GetComputerNameA
GetConsoleCursorMode
SearchPathA
PrepareTape
GetNativeSystemInfo
LoadResource
RaiseException
EnumTimeFormatsA
OpenJobObjectA
SetProcessShutdownParameters
SetInformationJobObject
OutputDebugStringA
GetBinaryTypeA
GetSystemTime
WriteConsoleOutputA
UpdateResourceA
GetCurrentProcessId
FindResourceExA
GetConsoleTitleA
ConnectNamedPipe
GetConsoleInputExeNameA
GetTempPathA
SetHandleContext
EnumResourceNamesA
EndUpdateResourceA
PeekConsoleInputA
GetEnvironmentVariableA
GetLocaleInfoA
ExitVDM
LockFile
GetPrivateProfileSectionNamesA
ClearCommError
OpenMutexA
OpenFileMappingA
RegisterWaitForSingleObjectEx
WritePrivateProfileSectionA
ReadConsoleInputA
ReadFileScatter
GetExitCodeThread
SetLocalPrimaryComputerNameA
DefineDosDeviceA
CreateTimerQueueTimer
SetPriorityClass
VirtualAlloc
GetThreadPriorityBoost
SetFilePointerEx
OpenMutexA
VirtualAlloc
OpenSemaphoreA
FindFirstVolumeMountPointA
ReadConsoleOutputA
GetWindowsDirectoryA
RemoveDirectoryA
ReadConsoleOutputCharacterA
GetConsoleOutputCP
GetFileAttributesA
LocalShrink
FindFirstVolumeA
VirtualProtectEx
HeapAlloc
FlushFileBuffers
GetDiskFreeSpaceExA
SetVolumeMountPointA
VirtualLock
QueryDosDeviceA
GetConsoleTitleA
WaitForSingleObject
DeleteTimerQueue
SetConsoleMode
GetModuleFileNameA
OpenEventA
CallNamedPipeA
EnumResourceTypesA
GetThreadPriority
CloseHandle
WriteConsoleInputA
DeleteVolumeMountPointA
IsSystemResumeAutomatic
GetVersionExA
GetFileAttributesA
SetMessageWaitingIndicator
GetSystemTimes
FatalExit
ReadConsoleA

gdi32

ChoosePixelFormat
GetDeviceCaps

dhcpsapi

DhcpAddServer

opengl32

wglMakeCurrent

dsound

DirectSoundCreate8
DirectSoundCaptureCreate8

Exports

Exports

Pmioudwaey
OpenStknicm
EndLahkduhyco
Qruqdobfr
IsKuocvtabe
InitRkyocevb
EndMqdihvtc
GetBnliflej
Kvghwqg
Msgvnpaosn
Mxdjoxpu
Cyowokaki
AddLmbnkhj
Oampxjuheb
EndXelnewv
InitJiclbfqqky
Jadglngvc
InitPqagklgmaol
Gxkfcug
Ijhsdnmlc
Fodseouec
Unvqdievfu

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

47e7d35c27a7bb845bf14a2bf846f9b2

Headers

File Characteristics

Imports

kernel32

gdi32

dhcpsapi

opengl32

dsound

Exports

Exports

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 33KB - Virtual size: 72KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 1024B - Virtual size: 532B

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 33KB - Virtual size: 72KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 532B

.rsrc
Size: 29KB - Virtual size: 28KB