a5de5e3eec26c28b22054a62d4c08f9f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a5de5e3eec26c28b22054a62d4c08f9f_JaffaCakes118
Size

97KB
MD5

a5de5e3eec26c28b22054a62d4c08f9f
SHA1

a2e6d2092c82f62f41671a0e4ea2a3c9fedb2f41
SHA256

83632f1b8a10d794c481e28eabaa19ad5facda5a48bbd7d7dbda6cc67bae6739
SHA512

015b4b2a07ee0b73dbbb360ef2da27a702f3b6d8a3ed2b26ce4993f86a58e216229b646dfb54d449e5b50902e8b3896fabdcb7dbf229ab30f9dbbc74cfe2d8f5
SSDEEP

3072:DeuTUJxOmjfjEU0t3f7GJkJRIIFKMPt05:6QSUb7GJqIE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5de5e3eec26c28b22054a62d4c08f9f_JaffaCakes118

Files

a5de5e3eec26c28b22054a62d4c08f9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8ca2292fa2edc2801ea5ca9dea7b0b6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
LoadLibraryA
VirtualFree
HeapCreate
HeapDestroy
GetCurrentThread
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetModuleHandleW
GetCommandLineW
GetVersion
GetLastError
TerminateProcess
HeapFree
SetConsoleMode
GetStringTypeW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess

user32

FindWindowW
DeferWindowPos
BeginDeferWindowPos
GetClassNameA
IsWindowEnabled
ReleaseCapture
SetCapture
DestroyWindow
IsWindow
CallWindowProcW
EnableWindow
GetDlgItem
SetWindowLongW
GetScrollPos
EndPaint
GetWindow
GetParent
MapVirtualKeyA
GetKeyNameTextW
IsIconic
EndDeferWindowPos
SetWindowTextW
IsDialogMessageA
PostMessageA
SetWindowLongA
SetWindowsHookExA
GetWindowRect
GetSystemMetrics
GetForegroundWindow
GetClientRect
SendMessageW
MapWindowPoints
DestroyMenu
MapDialogRect

advapi32

RegOpenKeyExW
OpenSCManagerW
RegQueryValueExW
OpenServiceA
OpenThreadToken
QueryServiceStatus
CloseServiceHandle
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyA
RegCloseKey

ws2_32

WSAAddressToStringA
send
WSACleanup
socket
WSAStartup
WSAWaitForMultipleEvents
WSAEnumNetworkEvents

Exports

Exports

ADhVDiSqYWuqLeJqoEnBTxfCE
LQCKzNFMOnSLfWYWqwKXrbc
agvJJAcPwXdmKNDjfS

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8ca2292fa2edc2801ea5ca9dea7b0b6a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 44KB - Virtual size: 1.1MB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 44KB - Virtual size: 1.1MB