5fa68dac040ea3fc6a0035dd826649e3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5fa68dac040ea3fc6a0035dd826649e3_JaffaCakes118
Size

84KB
MD5

5fa68dac040ea3fc6a0035dd826649e3
SHA1

b9997ae741a2e4ba6390eec1f78e7ba6f49bcc21
SHA256

7b459510b869110eb92376fe83665c613bc4263aa8f5df3453d1b6c3893ab6fc
SHA512

f4a03cc2b37b75d0c281302b4898615dba084093f4f58e0e2201f4a92a8730421e27b21583d56b0805dcfe1a9346d5666eaee1d87a1c009c56239457b41020c8
SSDEEP

1536:/048715V0zBk2z+O4DDf+1oQUc4lVTRdq0XdPBlb3QrntWbSqY:/9kgzBk9/6/4lb8bqY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fa68dac040ea3fc6a0035dd826649e3_JaffaCakes118

Files

5fa68dac040ea3fc6a0035dd826649e3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b54f1289a7bd395ba4c0232a77b8c589

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

d3d8thk

OsThunkDdCreateD3DBuffer
OsThunkDdGetDriverState
OsThunkDdCreateMoComp
OsThunkDdGetMoCompBuffInfo
OsThunkDdSetColorKey
OsThunkDdGetAvailDriverMemory
OsThunkDdDestroyD3DBuffer
OsThunkDdDestroySurface
OsThunkDdFlipToGDISurface
OsThunkDdUpdateOverlay
OsThunkD3dValidateTextureStageState
OsThunkDdUnlock
OsThunkDdCreateSurfaceObject
OsThunkDdQueryDirectDrawObject
OsThunkD3dContextDestroy
OsThunkDdDeleteDirectDrawObject

kernel32

SetConsoleInputExeNameW
SetEnvironmentVariableW
AllocConsole
QueryPerformanceCounter
SetComputerNameExW
GetTickCount
EnumDateFormatsA
DeleteAtom
Module32First
ReadConsoleInputExW
CreateRemoteThread
GetDiskFreeSpaceW
AddLocalAlternateComputerNameA
LoadResource
SetMailslotInfo
LoadLibraryA
SetFileShortNameA
HeapFree
SetMessageWaitingIndicator
FileTimeToDosDateTime
GetConsoleAliasesLengthA
GetDiskFreeSpaceA
SwitchToThread
GetCurrentThreadId
GetCurrentProcessId
HeapCreate
GetSystemTimeAsFileTime
HeapSummary
VirtualAlloc
HeapLock
SetCommTimeouts
GetStartupInfoA
_lread

shlwapi

PathQuoteSpacesA
ColorHLSToRGB
PathIsLFNFileSpecW
PathMakePrettyW
SHRegOpenUSKeyW
StrRChrA
PathIsURLW
PathGetArgsW
StrToIntW
PathStripPathW
PathIsSameRootA
PathGetCharTypeA
UrlHashW
PathCreateFromUrlA
SHRegCreateUSKeyW

msi

MsiDatabaseImportA
MsiOpenDatabaseA
MsiProvideComponentFromDescriptorA
MsiDatabaseIsTablePersistentA
MsiLocateComponentA
MsiConfigureProductW
Migrate10CachedPackagesW
MsiSourceListClearAllA
DllUnregisterServer
MsiQueryFeatureStateFromDescriptorW
MsiDatabaseCommit
MsiConfigureFeatureFromDescriptorW
MsiGetPatchInfoA
MsiEnumComponentCostsW
MsiAdvertiseProductA
MsiEnumRelatedProductsA
MsiGetUserInfoA
MsiGetFileSignatureInformationW
MsiVerifyPackageA
MsiPreviewBillboardA
MsiRecordReadStream
DllGetClassObject

wininet

FindNextUrlCacheEntryExW
RetrieveUrlCacheEntryStreamW
SetUrlCacheHeaderData
InternetGetPerSiteCookieDecisionW
GopherGetLocatorTypeW
InternetGetLastResponseInfoA
InternetSecurityProtocolToStringA
HttpCheckDavCompliance
SetUrlCacheEntryInfoA
PrivacySetZonePreferenceW
FtpGetCurrentDirectoryW
InternetWriteFileExA
FindNextUrlCacheEntryW
SetUrlCacheEntryGroupW
GetUrlCacheConfigInfoW
FindNextUrlCacheGroup
InternetCanonicalizeUrlW
GetUrlCacheGroupAttributeW
InternetGetCookieW
RetrieveUrlCacheEntryFileW

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b54f1289a7bd395ba4c0232a77b8c589

Headers

DLL Characteristics

File Characteristics

Imports

d3d8thk

kernel32

shlwapi

msi

wininet

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 22KB - Virtual size: 31KB

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 512B - Virtual size: 228B

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 22KB - Virtual size: 31KB

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 512B - Virtual size: 228B