8ae43c4ed1fe538a8c5cbaec7cfeef71_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8ae43c4ed1fe538a8c5cbaec7cfeef71_JaffaCakes118
Size

2.3MB
MD5

8ae43c4ed1fe538a8c5cbaec7cfeef71
SHA1

2175f3404711730f7f0dcc17a2dce4b52434cceb
SHA256

c9d4559e4954c3b43451bf7b211b72c102675d47e95d5650e47fd0d3ead299c5
SHA512

094e75b0c7605f9bc71ac065c0fc4824d0c0f0f236be1cd688b48493e317561cc483e5223ed643b4ee1d6249ad9fc68f134168f2cd2e21dfb6694072fb369ae5
SSDEEP

49152:y69BYcPcuxKTtpa39UaQa/sfjZieeMgd+hxI8JC:z9HxwguE4XJfhO8JC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ae43c4ed1fe538a8c5cbaec7cfeef71_JaffaCakes118

Files

8ae43c4ed1fe538a8c5cbaec7cfeef71_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c78521fa497b16bdc718d338c16495a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileW
GetProfileSectionW
BackupWrite
OpenThread
WriteConsoleA
VirtualAlloc
DnsHostnameToComputerNameW
GetStartupInfoW
CreateEventW
ScrollConsoleScreenBufferA
GetVersion
DeleteAtom
RaiseException
SetConsoleCtrlHandler
LocalReAlloc
GetFileTime
_hread
GetAtomNameW
ExitProcess
SetConsoleCP
PostQueuedCompletionStatus
GetConsoleCursorInfo

winscard

SCardReconnect
SCardFreeMemory
g_rgSCardT0Pci
SCardLocateCardsW
SCardStatusA
SCardReleaseContext
SCardStatusW
SCardGetStatusChangeA
SCardGetCardTypeProviderNameA
SCardConnectW
SCardBeginTransaction
SCardListCardsA
SCardEndTransaction
SCardIsValidContext
SCardDisconnect
SCardTransmit

opengl32

glEvalMesh1
wglCreateContext
glEvalCoord2f
glMaterialfv
glViewport
glMatrixMode
glVertex3f
glGetFloatv
glCallList
glGetIntegerv
glOrtho
glMap2f
glMapGrid1f
wglMakeCurrent
glEnd
glEndList
glPixelStorei
glEvalPoint2
glPopMatrix
glMap1f

msvfw32

DrawDibBegin
DrawDibClose
ICDecompress
DrawDibChangePalette
ICLocate
DrawDibOpen
ICCompressorChoose
ord2
ICInfo
DrawDibEnd

msvcrt

iswgraph
_initterm
__p__fmode
__p__commode
abort
wcstod
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_ftol
_mbctype
_mbsdec
strtol
_mbsnbcnt
log
clock
strerror
atol
_sleep
_setjmp
wcslen
getchar
_ctime64

ntdll

RtlConvertSidToUnicodeString
RtlInitializeSid
RtlUnicodeToMultiByteSize
NtQueryVolumeInformationFile
ZwClose
NtClose
NtQueryVirtualMemory
RtlMultiByteToUnicodeSize

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 213KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbs
Size: 923KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1.1MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 728KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 814KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 6KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c78521fa497b16bdc718d338c16495a7

Headers

File Characteristics

Imports

kernel32

winscard

opengl32

msvfw32

msvcrt

ntdll

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 512B - Virtual size: 213KB

.textbs Size: 923KB - Virtual size: 1.5MB

.data Size: 1.1MB - Virtual size: 1.6MB

DATA Size: 728KB - Virtual size: 1.2MB

.CRT Size: 814KB - Virtual size: 1.3MB

.tls Size: - Virtual size: 6KB

.data Size: 512B - Virtual size: 24B

.rsrc Size: 39KB - Virtual size: 38KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 512B - Virtual size: 213KB

.textbs
Size: 923KB - Virtual size: 1.5MB

.data
Size: 1.1MB - Virtual size: 1.6MB

DATA
Size: 728KB - Virtual size: 1.2MB

.CRT
Size: 814KB - Virtual size: 1.3MB

.tls
Size: - Virtual size: 6KB

.data
Size: 512B - Virtual size: 24B

.rsrc
Size: 39KB - Virtual size: 38KB

.reloc
Size: 3KB - Virtual size: 2KB