72e8ebf82449e31f0e47c08d0046b39e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

72e8ebf82449e31f0e47c08d0046b39e_JaffaCakes118
Size

2.0MB
MD5

72e8ebf82449e31f0e47c08d0046b39e
SHA1

65c10f1630f5f676d1a70b003aa33627e2e1fa44
SHA256

30ab34f15e0d79cd64a47265d2fdece2b249cef600f17876bd1f1d9211b6c92a
SHA512

654d1831e4b924207be7bb26d5d04d8f67621c606a7099ffe377e21962ad255721be3270f7b7b3e325ba749ab4cce14b6d0dd7c7ed817ef34240888c3c0070c6
SSDEEP

49152:Qe9/q8tmN0sUty10GuutfQzpDbSb/ieTtcNOfk:3AN0s6TutfQzpDbSb6ohk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72e8ebf82449e31f0e47c08d0046b39e_JaffaCakes118

Files

72e8ebf82449e31f0e47c08d0046b39e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

360d31c616ad6e460f297a8f2b5b1672

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapVirtualKeyA
GetKeyboardLayoutNameW
MsgWaitForMultipleObjects
CharLowerW
LoadMenuW
ShowCaret
ScrollDC
InsertMenuW
GetInputState
IsClipboardFormatAvailable
GetClassInfoW
ChangeClipboardChain
CreateDesktopA
IsCharAlphaW
GetDlgItemTextW
IsDialogMessageA
IsWindowVisible
IsCharAlphaA
SendNotifyMessageW
EnumWindows
SetUserObjectInformationW
EnumDisplayDevicesA
ClientToScreen
ExitWindowsEx
EnableScrollBar
ShowWindow
GetProcessWindowStation
GetUserObjectInformationW
BeginDeferWindowPos
DrawTextExW
GetWindowTextW

oleaut32

SafeArrayCreate
SafeArrayRedim

advapi32

CryptSetProvParam
AllocateAndInitializeSid
AccessCheckAndAuditAlarmW
SetTokenInformation
OpenProcessToken
RegUnLoadKeyA
ReadEventLogW
BuildTrusteeWithNameW
OpenEventLogW
ObjectDeleteAuditAlarmW
RegSetValueA
GetNamedSecurityInfoW
RegCreateKeyExA
QueryServiceStatus
CryptAcquireContextA
InitializeSecurityDescriptor
InitiateSystemShutdownA
RegEnumValueW

version

VerQueryValueA
VerInstallFileA
VerFindFileA

ole32

OleBuildVersion
OleCreateMenuDescriptor
CoDisconnectObject
CoLockObjectExternal

kernel32

WritePrivateProfileStructA
CreateIoCompletionPort
WriteConsoleOutputW
SetFileAttributesA
lstrcmpA
OpenMutexA
GetConsoleCursorInfo
SetFileTime
GetSystemInfo
GetThreadPriority
LoadLibraryExW
GetTimeZoneInformation
ReadFileScatter
GetDateFormatA
lstrcpyA
SetConsoleOutputCP
LocalAlloc
VirtualAllocEx
ExitProcess
WriteFile
ReadFile
MoveFileW
GetShortPathNameA
GetDriveTypeW
UnhandledExceptionFilter
GenerateConsoleCtrlEvent
FindNextChangeNotification
CreateDirectoryExA
IsProcessorFeaturePresent
GetVersion
LCMapStringA
GetDriveTypeA
WriteConsoleOutputCharacterA
GetProcessHeap
InitializeCriticalSection
SetThreadLocale
SetCommTimeouts
GetDiskFreeSpaceW
SetConsoleWindowInfo
ReadDirectoryChangesW
OutputDebugStringW
GetBinaryTypeW
SetEnvironmentVariableW

ws2_32

listen
WSAConnect
WSAEventSelect
WSAGetLastError
WSAGetServiceClassNameByClassIdA
htons
WSALookupServiceBeginW
WSAStringToAddressA
WSACleanup

msvcrt

wctomb
_ismbcspace
_pctype
_beginthreadex
free
_read
_getmbcp
_wputenv
strncpy
_ismbcdigit
_chsize
_mbstrlen
fclose
wcsspn
_open

Sections

.text
Size: 4KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 18B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

360d31c616ad6e460f297a8f2b5b1672

Headers

File Characteristics

Imports

user32

oleaut32

advapi32

version

ole32

kernel32

ws2_32

msvcrt

Sections

.text Size: 4KB - Virtual size: 220KB

.text Size: 512B - Virtual size: 18B

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 1.8MB - Virtual size: 1.8MB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 4KB - Virtual size: 220KB

.text
Size: 512B - Virtual size: 18B

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 1.8MB - Virtual size: 1.8MB

.rsrc
Size: 17KB - Virtual size: 16KB