5b595ec2b9fbe66d7fcd08c44b41c5ec_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5b595ec2b9fbe66d7fcd08c44b41c5ec_JaffaCakes118
Size

59KB
MD5

5b595ec2b9fbe66d7fcd08c44b41c5ec
SHA1

fe5f0b59e0565497495c0d4ec8a07d02ae6ca138
SHA256

0e3e224444ea273159f7fc0573f5583a0cb15b621c0453562b91858a03be6f20
SHA512

d7cf097a8cf7f4650cbc29cca730996a6f6fcb69b22c933fdaf72596a17530c0b1e42503d0f40a486f030de6936293269db6ae0bb76dbe30dd4615796afe6448
SSDEEP

1536:xQUDqCnHlc8K1XtHWflrZ5l6sMqdu2hnY:esqCnFw19H8RY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b595ec2b9fbe66d7fcd08c44b41c5ec_JaffaCakes118

Files

5b595ec2b9fbe66d7fcd08c44b41c5ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d8e11d74f7aac42c29696c9fea589736

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalCompact
GetCommState
MulDiv
GetThreadLocale
LocalAlloc
BuildCommDCBA
GetThreadTimes
DefineDosDeviceA
LoadLibraryExA
GetPriorityClass
FatalAppExitA
CreateProcessA
TlsAlloc
InterlockedCompareExchange
Heap32First
GetCurrentThreadId
EndUpdateResourceA
SetConsoleCursorPosition
GetUserDefaultLangID
ReleaseSemaphore
SignalObjectAndWait
ExitThread
SetEnvironmentVariableA
CommConfigDialogA
BackupWrite
ReadFileEx
_lread
GetDiskFreeSpaceExA
GetTimeZoneInformation
WritePrivateProfileStructA
IsSystemResumeAutomatic
SetCalendarInfoA
SetThreadExecutionState
QueueUserAPC
Module32Next
FindResourceExA
SetComputerNameA
WriteConsoleA
SetCommTimeouts
DisconnectNamedPipe
Sleep
ConnectNamedPipe
TransactNamedPipe
WriteProfileStringA
GlobalUnfix
GetModuleFileNameA
GetSystemTimeAdjustment
GetUserDefaultLCID
CancelWaitableTimer
WaitCommEvent
GetCompressedFileSizeA
GlobalUnlock
GetAtomNameA
UTRegister

shlwapi

PathCompactPathExA
PathUnmakeSystemFolderA
SHCreateShellPalette
PathRemoveFileSpecA
UrlApplySchemeA
ChrCmpIA
UrlCombineA
AssocCreate
PathCommonPrefixA
SHRegDeleteEmptyUSKeyA
StrCmpNIA
SHAutoComplete
PathFindOnPathA
ColorHLSToRGB
SHRegEnumUSValueA
PathGetDriveNumberA
PathAddBackslashA
SHSkipJunction
DllGetVersion
SHRegSetUSValueA
PathMatchSpecA
PathMakePrettyA
PathCanonicalizeA
PathSkipRootA
PathStripToRootA
PathIsUNCA
PathGetArgsA
SHQueryInfoKeyA
PathIsDirectoryA
PathIsFileSpecA
StrSpnA
PathAppendA
SHRegCloseUSKey
PathSearchAndQualifyA
AssocQueryStringA
PathRemoveArgsA

advapi32

ConvertAccessToSecurityDescriptorA

Sections

.lwdol
Size: 22KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.atcr
Size: 5KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vsvkt
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xkf
Size: 27KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8e11d74f7aac42c29696c9fea589736

Headers

File Characteristics

Imports

kernel32

shlwapi

advapi32

Sections

.lwdol Size: 22KB - Virtual size: 45KB

.atcr Size: 5KB - Virtual size: 10KB

.vsvkt Size: 1024B - Virtual size: 1KB

.xkf Size: 27KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 4KB

.lwdol
Size: 22KB - Virtual size: 45KB

.atcr
Size: 5KB - Virtual size: 10KB

.vsvkt
Size: 1024B - Virtual size: 1KB

.xkf
Size: 27KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 4KB