a5fd8fe4d82bfe574eb552b364e70c6a_JaffaCakes118

General

Target

a5fd8fe4d82bfe574eb552b364e70c6a_JaffaCakes118
Size

8KB
MD5

a5fd8fe4d82bfe574eb552b364e70c6a
SHA1

3d191d19a80d3251f0f9b421a56ea2db3d3039d8
SHA256

4f47bfde945bf7b182cfd1c1e1c30af5b3e201b75d202e5c3ae189c8783b47cd
SHA512

abe7dc61a20aaa4c45bcfa0992f8b83ac06f365849bb6e67e52b64564cec90b83a6724859d201044dfe7d429dd78583768293baa797b6375e50b54c268e28a9e
SSDEEP

192:CWOFHJ/6KQ0m2Xu56Sci785x9F1oynWmm:Cdpm5I/i785V1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5fd8fe4d82bfe574eb552b364e70c6a_JaffaCakes118

Files

a5fd8fe4d82bfe574eb552b364e70c6a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

426399ca19caa5dead11655396617c7e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateMutexA
GetCurrentDirectoryA
FreeLibrary
GetProcAddress
LoadLibraryA
SetFileAttributesA
CloseHandle
WriteFile
CreateFileA
lstrcatA
lstrcpyA
GetStartupInfoA
GetSystemDirectoryA
GetModuleFileNameA
GetWindowsDirectoryA
DeleteFileA
Sleep
CopyFileA
ExitProcess
WritePrivateProfileStringA
GetFileAttributesA
GetPrivateProfileStringA
WinExec
GetModuleHandleA

advapi32

OpenSCManagerA
CreateServiceA
OpenServiceA
CloseServiceHandle
StartServiceA
RegisterServiceCtrlHandlerA
SetServiceStatus
StartServiceCtrlDispatcherA

msvcrt

strncmp
atoi
??2@YAPAXI@Z
__dllonexit
_onexit
_exit
_XcptFilter
exit
_acmdln
strncpy
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
sprintf
_stricmp
fopen
fclose
__getmainargs
??3@YAXPAX@Z

msvcp60

??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

426399ca19caa5dead11655396617c7e

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

msvcp60

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 1KB