a340fb56eddde9c6c8fe197fd95db8f8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a340fb56eddde9c6c8fe197fd95db8f8_JaffaCakes118
Size

19KB
MD5

a340fb56eddde9c6c8fe197fd95db8f8
SHA1

e0b08fddc73e38e111ec9485679a5a1545c21378
SHA256

46c56da0751b481f70c9bed4f2993463433463c3ba952073fb2d6c4402f86723
SHA512

37ca6d85e122772c29293a11060a8cdb7dbe71a2484c7366c61efac1e39fe2e50fb040898820d83ab002f3f26de5684b9720ad70ba08473cf01f2bb08d361482
SSDEEP

384:hG+eOrGFeIiI6W3UUnfQR5qz89IYJz1dg4nZ:snD3UUnfQnqwaYplZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a340fb56eddde9c6c8fe197fd95db8f8_JaffaCakes118

Files

a340fb56eddde9c6c8fe197fd95db8f8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0fa8e017ad095808ce52e6856975821b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
AddConsoleAliasA
BeginUpdateResourceW
ClearCommError
CommConfigDialogW
CopyFileA
CreateEventA
CreateIoCompletionPort
CreateJobObjectA
CreateJobObjectW
CreateNamedPipeW
DebugBreak
DefineDosDeviceA
DeleteTimerQueueEx
EndUpdateResourceW
EnumCalendarInfoExW
EnumDateFormatsExW
EnumSystemCodePagesA
EnumSystemLanguageGroupsW
EnumTimeFormatsA
FindFirstFileA
FreeLibrary
GetCPInfo
GetCalendarInfoA
GetCommTimeouts
GetCompressedFileSizeW
GetComputerNameA
GetComputerNameExA
GetConsoleAliasesLengthA
GetConsoleCursorInfo
GetConsoleMode
GetConsoleOutputCP
GetDateFormatW
GetEnvironmentStrings
GetFileAttributesExA
GetLastError
GetLogicalDrives
GetNamedPipeInfo
GetOEMCP
GetPrivateProfileStructA
GetStdHandle
GetSystemDefaultLCID
GetTempPathA
GetThreadTimes
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetProcAddress
GlobalGetAtomNameA
HeapDestroy
IsBadCodePtr
IsDebuggerPresent
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalCompact
LocalFileTimeToFileTime
MoveFileExW
Process32NextW
QueryPerformanceCounter
QueryPerformanceFrequency
ReadConsoleA
RtlUnwind
SetCommState
SetComputerNameW
SetConsoleCursor
SetConsoleCursorPosition
SetConsoleDisplayMode
SetConsoleWindowInfo
SetFileApisToOEM
SetFileAttributesA
SetFileAttributesW
SetHandleInformation
SetLastError
SetNamedPipeHandleState
SetVolumeMountPointA
SetVolumeMountPointW
SleepEx
SwitchToFiber
UnhandledExceptionFilter
VerifyVersionInfoA
VirtualFree
VirtualUnlock
WaitCommEvent
WaitForSingleObjectEx
WinExec
WritePrivateProfileStructW
lstrcat
lstrcmpA
lstrcpyA
lstrcpyW
lstrcpynW
lstrlenA
ExitProcess
GetVolumeInformationW
GetModuleHandleW

msvcrt

memset

advapi32

RegOpenKeyA
RegOpenKeyExW

ole32

CLIPFORMAT_UserSize
CLSIDFromString
CoAddRefServerProcess
CoAllowSetForegroundWindow
CoCancelCall
CoCopyProxy
CoCreateInstanceEx
CoFileTimeNow
CoFreeAllLibraries
CoFreeLibrary
CoGetClassVersion
CoImpersonateClient
CoInstall
CoLoadLibrary
CoLockObjectExternal
CoMarshalHresult
CoQueryProxyBlanket
CoRegisterMessageFilter
CoResumeClassObjects
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoUnmarshalHresult
CoUnmarshalInterface
CoWaitForMultipleHandles
CreateClassMoniker
CreateDataAdviseHolder
CreateDataCache
EnableHookObject
GetHGlobalFromILockBytes
HACCEL_UserMarshal
HACCEL_UserSize
HBRUSH_UserFree
HBRUSH_UserMarshal
HBRUSH_UserSize
HDC_UserFree
HDC_UserUnmarshal
HENHMETAFILE_UserMarshal
HENHMETAFILE_UserUnmarshal
HICON_UserFree
HMENU_UserFree
HMENU_UserUnmarshal
HMETAFILEPICT_UserMarshal
HMETAFILEPICT_UserUnmarshal
HMETAFILE_UserUnmarshal
HPALETTE_UserSize
HPALETTE_UserUnmarshal
IIDFromString
MkParseDisplayName
MonikerCommonPrefixWith
MonikerRelativePathTo
OleCreateDefaultHandler
OleCreateFromFileEx
OleCreateMenuDescriptor
OleCreateStaticFromData
OleDestroyMenuDescriptor
OleDoAutoConvert
OleDuplicateData
OleFlushClipboard
OleInitializeWOW
OleIsRunning
OleLockRunning
OleNoteObjectVisible
OleRegEnumFormatEtc
OleRegGetUserType
OleSetMenuDescriptor
RevokeDragDrop
SNB_UserMarshal
SNB_UserUnmarshal
StgConvertPropertyToVariant
StgCreatePropSetStg
StgCreatePropStg
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenPropStg
StgOpenStorageEx
StgSetTimes
StringFromCLSID
StringFromGUID2
UtConvertDvtd16toDvtd32
UtConvertDvtd32toDvtd16
UtGetDvtd16Info
WriteOleStg

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text4
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fa8e017ad095808ce52e6856975821b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

advapi32

ole32

Sections

.text Size: 7KB - Virtual size: 6KB

.text4 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 108B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 6KB

.text4
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 108B

.rsrc
Size: 2KB - Virtual size: 1KB