9fdbf1c12ba48dccae6a4c6420bb6a6b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9fdbf1c12ba48dccae6a4c6420bb6a6b_JaffaCakes118
Size

74KB
MD5

9fdbf1c12ba48dccae6a4c6420bb6a6b
SHA1

d8cf4d5baaa5104898240894c6679fdb37bcd604
SHA256

7fb934861f6545ae3024ea246cea4a26b2b4cc8948298b8e78fa51b4fd1abc4a
SHA512

6bcf7be16da0ee8ff6402a0905eeefcc2a7d4027424d88dd4844ad6b734e983af5f1732e24b2aea053b5ca7b465e7c2e0b5467398c5288fa623fc87f0b959aa3
SSDEEP

768:QKXkjtUbMxMRBRsaaiJnXdRFKxDAqo+Aj/xjoXzyvqRUqnE07OJPlgKZmgzlnD3y:QKUCYMR8aaBI+g5jVKxaPlvdF7fQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fdbf1c12ba48dccae6a4c6420bb6a6b_JaffaCakes118

Files

9fdbf1c12ba48dccae6a4c6420bb6a6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8b8d4415f5ff01a15983fc5e031c14e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
FatalAppExitA
GetDiskFreeSpaceA
lstrcpynW
GetHandleInformation
GetACP
ConnectNamedPipe
ReplaceFileA
FatalAppExitW
SetComputerNameA
SetErrorMode
GetEnvironmentStringsA
SleepEx
CreateSemaphoreA
SearchPathA
lstrlenW
GetCurrentProcess
HeapCreate
VirtualAlloc
GetLastError
GetShortPathNameW
OpenEventA
GetFullPathNameW
GetLocaleInfoW

user32

LoadMenuIndirectW
EnumChildWindows
UnregisterClassW
GetDC
DrawTextW
CreatePopupMenu
DrawIcon
GetClassLongW
GetSysColorBrush
SetWindowPos
InvalidateRect
UnregisterClassA
GetWindowLongW
PostQuitMessage
CreateDialogParamW
wvsprintfA
MonitorFromRect
PeekMessageA
CopyRect
GetWindowRect
FindWindowW
CopyIcon

gdi32

DPtoLP
GdiGetBatchLimit
IntersectClipRect
GetCharWidth32W
GetPath
RestoreDC
GetViewportExtEx
AddFontResourceA
ExtEscape
Escape
EnumICMProfilesW
SetTextAlign
SetStretchBltMode
GetTextAlign
GetAspectRatioFilterEx
GetBoundsRect

advapi32

RegQueryInfoKeyA
RegEnumValueA
ConvertSidToStringSidW
RegOpenKeyA
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW

urlmon

HlinkGoBack

inetcomm

EssSecurityLabelEncodeEx
MimeOleGetPropA
MimeEditIsSafeToRun
MimeOleSetBodyPropW
MimeOleSMimeCapRelease
MimeOleSMimeCapsFromDlg
HrGetDisplayNameWithSizeForFile
MimeOleSMimeCapInit

Sections

.e
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.LWJhYO
Size: 1024B - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.a
Size: 2KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cItrh
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fiNbxn
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d
Size: 1KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.FbyuK
Size: 2KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tNIhR
Size: 1KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ca
Size: 2KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.S
Size: 1KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc1
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b8d4415f5ff01a15983fc5e031c14e7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

urlmon

inetcomm

Sections

.e Size: 9KB - Virtual size: 9KB

.LWJhYO Size: 1024B - Virtual size: 39KB

.a Size: 2KB - Virtual size: 42KB

.cItrh Size: 4KB - Virtual size: 3KB

.fiNbxn Size: 1KB - Virtual size: 7KB

.d Size: 1KB - Virtual size: 26KB

.FbyuK Size: 2KB - Virtual size: 49KB

.tNIhR Size: 1KB - Virtual size: 34KB

.rsrc Size: 1024B - Virtual size: 592B

.Ca Size: 2KB - Virtual size: 25KB

.S Size: 1KB - Virtual size: 36KB

.rsrc1 Size: 212KB - Virtual size: 212KB

.reloc Size: 1024B - Virtual size: 796B

.e
Size: 9KB - Virtual size: 9KB

.LWJhYO
Size: 1024B - Virtual size: 39KB

.a
Size: 2KB - Virtual size: 42KB

.cItrh
Size: 4KB - Virtual size: 3KB

.fiNbxn
Size: 1KB - Virtual size: 7KB

.d
Size: 1KB - Virtual size: 26KB

.FbyuK
Size: 2KB - Virtual size: 49KB

.tNIhR
Size: 1KB - Virtual size: 34KB

.rsrc
Size: 1024B - Virtual size: 592B

.Ca
Size: 2KB - Virtual size: 25KB

.S
Size: 1KB - Virtual size: 36KB

.rsrc1
Size: 212KB - Virtual size: 212KB

.reloc
Size: 1024B - Virtual size: 796B