86ccf3477151d3557cea7139f64ddc7e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

86ccf3477151d3557cea7139f64ddc7e_JaffaCakes118
Size

120KB
MD5

86ccf3477151d3557cea7139f64ddc7e
SHA1

32d175b46ce9fbf0c593edb51f6ab2d94bdc8fe9
SHA256

027d54c18e518bc778bd1f72ab3a8170e15ea47159e6060b472c892ac01520ec
SHA512

2e5dc2340757cf8d30373d54e95b22e7afd0cea24ff38ff81264f879cbcded370ba098647d2995d9abbcc634b56bb3d2b2da45de7f3699bc8f8d15f4d43c058f
SSDEEP

3072:DLtpLGV3/dxBCMFujhbOF48Wiqn0+KkQM+nVPp3GNuF+I4q9IM:vt8VvdxKA4851M+nmNU4q9I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86ccf3477151d3557cea7139f64ddc7e_JaffaCakes118

Files

86ccf3477151d3557cea7139f64ddc7e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2cca351423896ac527058de348fbd943

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CallNamedPipeA
GetWindowsDirectoryA
GetLastError
HeapAlloc
ExitThread
VirtualProtect
LoadLibraryW
OutputDebugStringA
WriteConsoleW
CallNamedPipeW
VirtualFree
GetModuleHandleA
GetStringTypeW
FindFirstFileW
VirtualAlloc
CreateFileW
_lclose
GetCurrentProcess
CreateHardLinkW
GetProcAddress
lstrlenA
FreeLibrary

msvcrt

strncpy
_cexit
__CxxFrameHandler
_wtol
__initenv
_ftol
wcscmp
_controlfp
malloc
_exit
_c_exit
isalpha
swprintf
wcschr
swscanf
wcscat
__dllonexit
__winitenv
isdigit
wcscpy
_iob
_purecall
_adjust_fdiv
_vsnprintf
__p__fmode
memcpy
_snwprintf
_wcmdln
__p__commode
free
_except_handler3
wcslen

user32

GetMenuItemCount
ReleaseCapture
SetScrollPos
LoadMenuW
DispatchMessageW
LoadCursorA
ClientToScreen
DialogBoxParamA
GetCursorPos
DestroyWindow
wsprintfW
BeginPaint
IsWindow
CheckDlgButton
GetParent
RegisterClassA
MapWindowPoints
LoadImageW
CopyRect
SendMessageW
SendMessageA
LoadCursorW
ReleaseDC
GetProcessWindowStation
UnregisterClassW
SetCapture
ScreenToClient

shell32

SHGetFolderPathW
SHGetFileInfoW
ShellExecuteW
SHGetPathFromIDListW

opengl32

glTexCoord2d
glStencilMask
glFogfv
glColor3ui
glColor4d
glTexCoord2dv
glColor4f
GlmfBeginGlsBlock
glColor4i
wglShareLists

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cca351423896ac527058de348fbd943

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

opengl32

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 124B

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 31KB - Virtual size: 31KB

.reloc Size: 512B - Virtual size: 104B

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 124B

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 31KB - Virtual size: 31KB

.reloc
Size: 512B - Virtual size: 104B