8badcbc1ef5afe954e76ee54c37ca0c8_JaffaCakes118

General

Target

8badcbc1ef5afe954e76ee54c37ca0c8_JaffaCakes118
Size

25KB
MD5

8badcbc1ef5afe954e76ee54c37ca0c8
SHA1

3d0632f6269d4eca268ee395423ba3735deeea3d
SHA256

03baaeb9a42e43eeb899b3ca7dbe985682d217d2338426eef28c8da1bcce53c2
SHA512

de3aefac29cd944e4e32a3f6192565a01838eb01993c3ec75b85af1979754eae73a17ce0e7790e7e71481261360f254f159b126d923777c73bdff5221b77a453
SSDEEP

768:Xq+uNHEWVaYudpB2dzkRYKnrANchdVFZdgl68:XykWVa1UkR3rGarI68

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8badcbc1ef5afe954e76ee54c37ca0c8_JaffaCakes118

Files

8badcbc1ef5afe954e76ee54c37ca0c8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

15acb7216be6b0e30bbd7c45c4492fbb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoAllowSetForegroundWindow
CLIPFORMAT_UserFree
CoGetStandardMarshal
OleCreateLinkFromData
StgCreatePropStg
HICON_UserSize

user32

SetDlgItemInt
SetActiveWindow
DrawTextW
ShowWindowAsync
DlgDirListComboBoxW
SetTimer
GetCapture
GetForegroundWindow

kernel32

GetModuleHandleA
FindFirstChangeNotificationW
PeekNamedPipe
CreateFileMappingA
OpenJobObjectA
GetStartupInfoA
SetConsoleNumberOfCommandsA
IsBadHugeWritePtr
WriteConsoleInputVDMA
HeapFree
GetCommState
GetDriveTypeA
GetCommProperties
GetCommandLineA
GetNumberFormatA

advapi32

WmiExecuteMethodA
GetWindowsAccountDomainSid
WmiSetSingleInstanceA
DecryptFileA
EnumServicesStatusExA
WmiQueryAllDataW
GetAuditedPermissionsFromAclW
RegOpenKeyA
I_ScSetServiceBitsW

gdi32

GetTextExtentPointA
cGetTTFFromFOT
SelectObject
IntersectClipRect
SetICMProfileW

msvcrt

__p__winminor
__p___winitenv
__pioinfo
_time64
__threadid
_unlock
_stati64
_endthreadex
wcspbrk
_finite

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15acb7216be6b0e30bbd7c45c4492fbb

Headers

DLL Characteristics

File Characteristics

Imports

ole32

user32

kernel32

advapi32

gdi32

msvcrt

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 940B

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 940B