a6a5e0e771276d2877b3ac80d21365e5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a6a5e0e771276d2877b3ac80d21365e5_JaffaCakes118
Size

19KB
MD5

a6a5e0e771276d2877b3ac80d21365e5
SHA1

524de90564c39561ddb285790ca939a354c9c7ed
SHA256

9be9d97f5c9d9f99453c192aeeb8de731df595c7512f3830afc774ef82390b67
SHA512

ba70d23dea89ac61c7f9e844c6205e00ac547773c0fb3f2068da74894a961a8b38d568a11f7e42fbd0af49a6e2dda1a023f44b624b8b4485e0a3790532fb82cb
SSDEEP

384:c18utR+SfosDxGrEbI6ThFBe618di/hzwe3y183N5wL5:cSuBtD4ryrThYU5ySd5wL5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6a5e0e771276d2877b3ac80d21365e5_JaffaCakes118

Files

a6a5e0e771276d2877b3ac80d21365e5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f945d814eacb835cec3bc0723db678ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
ReadConsoleInputA
GlobalSize
LZInit
GetDiskFreeSpaceExA
GetConsoleCursorInfo
CreateEventA
OpenThread
GetDriveTypeA
GetProcessIoCounters
FindNextVolumeMountPointA
FindNextVolumeW
LoadLibraryA
DeleteTimerQueueTimer
SetConsoleIcon
ReadFileScatter
GetFileTime
WriteConsoleOutputCharacterW
OpenFileMappingA
GetProfileIntA
WaitForSingleObject
GetConsoleFontSize
SetUnhandledExceptionFilter
WriteConsoleOutputA
SetVolumeLabelA
UnlockFile
EnumTimeFormatsA
MapUserPhysicalPages
GetProcessId
GetThreadContext
VirtualAlloc
WriteConsoleOutputCharacterA
GetBinaryTypeA
OpenEventA
OpenSemaphoreA
GetUserDefaultLangID
PurgeComm
SearchPathA
PeekConsoleInputA
GetThreadContext
GetCurrentThread
TerminateProcess
GetThreadPriorityBoost
GetStdHandle
GetCurrentProcess
GetDllDirectoryA
FlushInstructionCache
WriteProfileSectionA
GetLocaleInfoA
HeapQueryInformation
SetVolumeMountPointA
ReadConsoleA
GetStringTypeExW
GetProcessHeap
GetConsoleCommandHistoryA
GetPrivateProfileIntA
GetLogicalDriveStringsA
GetModuleHandleA
lstrlenA
Module32Next
GetAtomNameA
GetSystemWindowsDirectoryA
SetFilePointerEx
ReadConsoleOutputCharacterA
VirtualQuery
SetConsoleInputExeNameA
lstrcmp
VirtualAlloc
AllocConsole
CopyFileExW
CommConfigDialogA
UpdateResourceA
FindNextVolumeA
SetPriorityClass
ReleaseMutex
RemoveDirectoryA
GetFullPathNameA
CreateDirectoryExA
WideCharToMultiByte
IsProcessorFeaturePresent
CreateDirectoryA
SetProcessPriorityBoost
TransmitCommChar
HeapValidate
FindFirstChangeNotificationA
GetFileInformationByHandle
LockFile
SetConsoleHardwareState
SetFileAttributesA
ChangeTimerQueueTimer
WriteConsoleOutputAttribute
GetModuleFileNameA
QueryPerformanceFrequency
SetThreadAffinityMask
GetConsoleKeyboardLayoutNameA
SetConsoleWindowInfo
FindNextVolumeMountPointW
SetVolumeLabelW
GetConsoleWindow
SetConsoleOutputCP
GetWindowsDirectoryA
ReleaseSemaphore
SetComputerNameA
FindCloseChangeNotification
SetLocalPrimaryComputerNameA
GetNamedPipeInfo

dhcpcsvc

DhcpUndoRequestParams

odbc32

SQLExecute
SQLSetStmtAttr

d3d9

Direct3DCreate9

Exports

Exports

OpenCfhbwukxsav
Wtjeofoge
InitKnbbmian
Unncnmtf
InitYyxoafhisu
Bawyudaigd
Vgmvxbhhgib
Jtlvdhbxpe
InitUhlfjmn
AddFodvckvwd
Rxyxsmyp
SetNubthrr
WriteWudkcorr
Tnohhaiil
Gtgswdbh
SetVlihotqtby
Fbhstffun
Jekicndxrp

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f945d814eacb835cec3bc0723db678ec

Headers

File Characteristics

Imports

kernel32

dhcpcsvc

odbc32

d3d9

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 1024B - Virtual size: 600B

.idata Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 16KB

.edata Size: 512B - Virtual size: 452B

.rsrc Size: 1024B - Virtual size: 868B

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 1024B - Virtual size: 600B

.idata
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 16KB

.edata
Size: 512B - Virtual size: 452B

.rsrc
Size: 1024B - Virtual size: 868B