78dae760fdbaaede1eb6bfa90f435bd6_JaffaCakes118

General

Target

78dae760fdbaaede1eb6bfa90f435bd6_JaffaCakes118
Size

70KB
MD5

78dae760fdbaaede1eb6bfa90f435bd6
SHA1

88528372807c12d69873a7e9c42c2240b604549d
SHA256

0dd3f1cb52e31da56018c94fcaecde8701c82934dbf4f7e148ba35d2569560e3
SHA512

c6a5910062314e3972c27c63422d7151cde21a73bd44b95f8809afa7e8227369225ead9527f882ad270c3ce7351a1dffbc657829203fb13ad09807833e6fc7cd
SSDEEP

1536:tTML4nJcwxex/UOobwGqo577+bekgshTEJG9smbCdI:RML4DEitbxcgshQGya

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78dae760fdbaaede1eb6bfa90f435bd6_JaffaCakes118

Files

78dae760fdbaaede1eb6bfa90f435bd6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38c636985d8a35d6b2bbe2cd1fd928f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
htonl
gethostname
ntohs
htons
sendto
send
inet_ntoa
gethostbyname
getsockname
inet_addr
select
accept
listen
gethostbyaddr
getpeername
bind
setsockopt
closesocket
connect
socket
recv

dbghelp

StackWalk64

kernel32

FileTimeToLocalFileTime
CreateFileA
FindFirstFileA
GetWindowsDirectoryA
FindClose
FindNextFileA
GetFileTime
SystemTimeToTzSpecificLocalTime
OpenEventA
SetEvent
GetSystemTimeAsFileTime
GetFileSize
GetSystemDirectoryA
lstrcatA
SetFileAttributesA
CreateProcessA
InterlockedDecrement
FreeLibrary
HeapFree
HeapReAlloc
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetVolumeInformationA
GetComputerNameA
GetTickCount
GetVersionExA
lstrcmpiA
lstrlenA
Sleep
lstrcpynA
GetModuleHandleA
InterlockedExchange
GetCurrentThreadId
ExitProcess
GetOverlappedResult
WaitForSingleObject
GetLastError
WriteFile
ReadFile
ConnectNamedPipe
DisconnectNamedPipe
CreateNamedPipeA
CloseHandle
GetTimeZoneInformation
CreateEventA
GetEnvironmentVariableA
DeleteFileA
lstrcpyA
lstrcmpA
VirtualAlloc
VirtualProtect
VirtualFree
IsBadReadPtr
GetCurrentProcess
SystemTimeToFileTime
GetSystemTime
DeviceIoControl
CreateFileW
ExitThread
VirtualFreeEx
VirtualAllocEx
WaitForMultipleObjects
CreateThread
SetUnhandledExceptionFilter
InterlockedIncrement
GetLocalTime
FileTimeToSystemTime

user32

wsprintfA

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38c636985d8a35d6b2bbe2cd1fd928f9

Headers

File Characteristics

Imports

ws2_32

dbghelp

kernel32

user32

advapi32

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 4KB