479923c7206fb63aee74ab3c8250826b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

479923c7206fb63aee74ab3c8250826b_JaffaCakes118
Size

30KB
MD5

479923c7206fb63aee74ab3c8250826b
SHA1

b7c5f0fbea18573e274678e40e55d418a3a10ee1
SHA256

fc460962f74d633c2e316c22c346c0956f130f7eff8174453cb50518b46a0672
SHA512

cb440f9e70fb73170b7fa5432866eb2d76008e9bcfd0d0140b1bea3493671fb9b49b3b02076fe020650aed56d9b57505fd091bbe0f7ca77bc2756d489f795c4e
SSDEEP

384:7TZ9gZ3j6OOV4giVcYfGbMY9FRvQKxN2fer2iOMJMhNIBk+QvQvQvQUAn:7TuW1eCPdL1CiENIBln

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
479923c7206fb63aee74ab3c8250826b_JaffaCakes118

Files

479923c7206fb63aee74ab3c8250826b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b7dfa860317b210278dfea276568b7b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

LoadLibraryExW
CreateFileA
VirtualProtect
VirtualProtect
ReadProcessMemory
WriteProcessMemory
LoadLibraryExA
ReadFile
ReadFile
GetStartupInfoA
GetProcAddress
LoadLibraryA
VirtualProtect
GetProfileIntA
SetThreadPriority
DeviceIoControl
Sleep
ReadFile
GetStartupInfoA
WaitForSingleObject
SleepEx
VirtualProtectEx
WriteProcessMemory
ReadFile
Sleep

credui

CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIReadSSOCredA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIInitControls
CredUIParseUserNameA
CredUIParseUserNameA
CredUIParseUserNameA
CredUIInitControls
CredUIInitControls

Sections

.text
Size: 21KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mesia
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mesia
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mesia
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mesia
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7dfa860317b210278dfea276568b7b8

Headers

File Characteristics

Imports

kernel32

credui

Sections

.text Size: 21KB - Virtual size: 72KB

.data Size: 4KB - Virtual size: 4KB

.mesia Size: 512B - Virtual size: 4KB

.mesia Size: 512B - Virtual size: 4KB

.mesia Size: 512B - Virtual size: 4KB

.mesia Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 72KB

.data
Size: 4KB - Virtual size: 4KB

.mesia
Size: 512B - Virtual size: 4KB

.mesia
Size: 512B - Virtual size: 4KB

.mesia
Size: 512B - Virtual size: 4KB

.mesia
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB