879eceeeeb1b14d0a886058bde99e8ef_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

879eceeeeb1b14d0a886058bde99e8ef_JaffaCakes118
Size

131KB
MD5

879eceeeeb1b14d0a886058bde99e8ef
SHA1

cd8206da97986753b365c3a562a83846ccf82e66
SHA256

160453332cb2756cb293bfd8bac4a10312420697c5816f512ac1525f34f5a649
SHA512

85b36590c839f27d9f8b97772b836935e8c6196cd15a05548690d96226e44a95a0180f46046838721359f8ff694e8443705a7ec202d94e72ea3d2cdca88f1f79
SSDEEP

3072:gQCByn2aL8yKTf3TYxnYVFtGG50IfuqclZCoRkh0oViPXiMU1ivKzAUW:LUfTYaVrGGhuqcG0o0P21ivKcL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
879eceeeeb1b14d0a886058bde99e8ef_JaffaCakes118

Files

879eceeeeb1b14d0a886058bde99e8ef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e3b8ea8497d272b6a82baeeac580677d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

?set_unexpected@@YAP6AXXZP6AXXZ@Z
?seekp@ostream@@QAEAAV1@JW4seek_dir@ios@@@Z
_ismbcgraph
?sh_write@filebuf@@2HB
??_8iostream@@7Bistream@@@
?rdbuf@ostrstream@@QBEPAVstrstreambuf@@XZ
gmtime
_wrename
?getdouble@istream@@AAEHPADH@Z
?unlockc@ios@@KAXXZ
?get@istream@@QAEAAV1@PAEHD@Z
_stat
?open@ifstream@@QAEXPBDHH@Z
??4filebuf@@QAEAAV0@ABV0@@Z
??0streambuf@@IAE@PADH@Z
fwrite
_close
_statusfp
__p__wcmdln
_ismbcalpha
_mbcjistojms
asin
_popen
??4istrstream@@QAEAAV0@ABV0@@Z
_mbslen
_findfirst
_abnormal_termination
_cgets
??_7istream@@6B@
??_8iostream@@7Bostream@@@
_ismbcalnum
??0strstreambuf@@QAE@P6APAXJ@ZP6AXPAX@Z@Z
??1ifstream@@UAE@XZ
??6ostream@@QAEAAV0@H@Z
_execve
_strupr
_mbsicoll
_CIsin
??4ostream@@IAEAAV0@ABV0@@Z
??5istream@@QAEAAV0@P6AAAVios@@AAV1@@Z@Z
_safe_fprem
cos
memset
_getmbcp
_filelength
?good@ios@@QBEHXZ
?sh_none@filebuf@@2HB
_beginthreadex
_getch
??0Iostream_init@@QAE@AAVios@@H@Z
__p__osver
_seh_longjmp_unwind
??6ostream@@QAEAAV0@O@Z
getchar
?precision@ios@@QAEHH@Z
_rmdir
localeconv
_ismbbtrail
tanh
??5istream@@QAEAAV0@AAM@Z
??_Gfilebuf@@UAEPAXI@Z
ungetwc
_dstbias
?peek@istream@@QAEHXZ
?get@istream@@QAEAAV1@PACHD@Z
??_Gistream@@UAEPAXI@Z
?ignore@istream@@QAEAAV1@HH@Z
_copysign
_global_unwind2
??0strstreambuf@@QAE@XZ
_wcreat
wcstol
?clear@ios@@QAEXH@Z
clock
_ungetch
?close@ifstream@@QAEXXZ
__winitenv
_strcmpi
_findnext
??_8ifstream@@7B@
?terminate@@YAXXZ
_fgetchar
?get@istream@@QAEAAV1@AAE@Z
isleadbyte
??0Iostream_init@@QAE@XZ
_memccpy
?is_open@filebuf@@QBEHXZ
?what@exception@@UBEPBDXZ
_ismbstrail
??0strstream@@QAE@ABV0@@Z
_CIacos
?pbump@streambuf@@IAEXH@Z
_wsearchenv
??_Dstdiostream@@QAEXXZ
_adj_fdivr_m32i
_aexit_rtn
_fdopen
_spawnle
calloc
_wcsicmp
??1Iostream_init@@QAE@XZ
?pbase@streambuf@@IBEPADXZ
_wfindfirst
??0exception@@QAE@ABQBD@Z
??0ofstream@@QAE@XZ
??1filebuf@@UAE@XZ
_pwctype
iswlower
_j0
getenv
?set_new_handler@@YAP6AXXZP6AXXZ@Z
_y1
_wtmpnam
?bad@ios@@QBEHXZ
__p__winver
_kbhit
??6ostream@@QAEAAV0@E@Z
_wexeclpe
_CIcosh
_strncoll
atan
??_E__non_rtti_object@@UAEPAXI@Z
_mbsnbcpy

oledlg

OleUIChangeIconW
OleUIEditLinksA
OleUIAddVerbMenuA
OleUIBusyA
OleUIPasteSpecialW
OleUIChangeSourceA
OleUIEditLinksW
OleUIChangeIconA
OleUIConvertA
OleUIPromptUserA
OleUIConvertW
OleUIInsertObjectA
OleUIUpdateLinksA
OleUIAddVerbMenuW
OleUIBusyW
OleUIPromptUserW
OleUICanConvertOrActivateAs
OleUIChangeSourceW
OleUIPasteSpecialA
OleUIInsertObjectW
OleUIObjectPropertiesA
OleUIUpdateLinksW
OleUIObjectPropertiesW

gdi32

GdiReleaseLocalDC
ExtCreateRegion
LineTo
HT_Get8BPPFormatPalette
FONTOBJ_cGetAllGlyphHandles
EngPlgBlt
GdiStartDocEMF
EngAssociateSurface
TextOutA
GetCharWidth32W
GdiCleanCacheDC
GetDCOrgEx
GdiGetCharDimensions
GetFontUnicodeRanges
FixBrushOrgEx
SetViewportExtEx
FONTOBJ_cGetGlyphs
InvertRgn
SetDIBColorTable
GetRegionData
XLATEOBJ_cGetPalette
SetGraphicsMode
CreateColorSpaceA
GdiGetDC
GdiGetDevmodeForPage
AddFontResourceExW
FrameRgn
DdEntry31
GetTextFaceW
GetViewportOrgEx
GdiFlush
BRUSHOBJ_ulGetBrushColor
CreateFontW
GetTextExtentExPointWPri
CreateBitmap
GdiValidateHandle
DdEntry36
GdiGetPageHandle
GetICMProfileW
GetTextMetricsW
SelectClipPath
DdEntry45
SaveDC
GetCurrentPositionEx

imm32

ImmIsIME
ImmGetIMCCLockCount
ImmSetCompositionWindow
ImmGetImeMenuItemsW
ImmWINNLSEnableIME
ImmGetDescriptionW
ImmUnregisterWordW
ImmCreateIMCC
ImmReleaseContext
ImmSetCandidateWindow
ImmSetHotKey
ImmGetCompositionWindow
ImmActivateLayout
ImmGetIMCCSize
ImmGetCandidateListW
ImmIMPGetIMEA
ImmRegisterWordA
ImmGetStatusWindowPos
ImmDestroyContext
ImmNotifyIME
ImmConfigureIMEA
ImmGetIMEFileNameA
ImmSetActiveContext
ImmWINNLSGetIMEHotkey
ImmIMPQueryIMEW
ImmSystemHandler
ImmDestroySoftKeyboard
ImmGetProperty
ImmGetCompositionFontW

kernel32

WritePrivateProfileStructA
ReadFileScatter
VirtualProtectEx
LeaveCriticalSection
GetEnvironmentStringsA
GetStringTypeExA
PrepareTape
GetConsoleCursorInfo
CancelWaitableTimer
BaseCheckAppcompatCache
LoadLibraryA
SetTapeParameters
GetFileSize
GetThreadPriority
EnumResourceTypesA
WriteConsoleOutputCharacterW
DuplicateConsoleHandle
GetUserGeoID
RtlZeroMemory
GetDiskFreeSpaceExW
GlobalAlloc
VirtualAlloc
SetCurrentDirectoryW
GetModuleHandleW
GetLongPathNameA
GetEnvironmentVariableW
DeleteFileA
ReadFile
GetModuleHandleA
CreateFileW
CreateHardLinkA
GetModuleFileNameW
SetLastConsoleEventActive
SetThreadIdealProcessor
ChangeTimerQueueTimer
IsDBCSLeadByte
SetLastError

Sections

.text
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3b8ea8497d272b6a82baeeac580677d

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt40

oledlg

gdi32

imm32

kernel32

Sections

.text Size: 52KB - Virtual size: 56KB

.rdata Size: 49KB - Virtual size: 52KB

.data Size: 512B - Virtual size: 44KB

.rsrc Size: 25KB - Virtual size: 28KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 56KB

.rdata
Size: 49KB - Virtual size: 52KB

.data
Size: 512B - Virtual size: 44KB

.rsrc
Size: 25KB - Virtual size: 28KB

.reloc
Size: 1024B - Virtual size: 4KB