a75b90609e8d1a1380f0e2e3f91dcc8a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a75b90609e8d1a1380f0e2e3f91dcc8a_JaffaCakes118
Size

484KB
MD5

a75b90609e8d1a1380f0e2e3f91dcc8a
SHA1

f31f5d7c732f0b2aefa0efe4a6de20c3d60e4254
SHA256

4877e42d86d45239bf61928ed11e09c07feed5441a0e40f3c7e9ef6c024714a7
SHA512

98dec7df32f74fa37e0b7d4ff0e9faa6ef40d152dd1c749c231905d6cd539437db215241187f9615d79040f96c8aa5dce15af24b66ea032e22377911018e0535
SSDEEP

12288:IQiWKS5/xMjZmDhJJnOXfybxbaUgcsp5kRMsgrgpC:1iWK2K4DhJJnVxba3h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a75b90609e8d1a1380f0e2e3f91dcc8a_JaffaCakes118

Files

a75b90609e8d1a1380f0e2e3f91dcc8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

16c68810346e831b5d67027c1e1dddf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

bind
htons
socket
sendto
ntohs
WSAGetLastError
WSASocketA
WSAJoinLeaf
getpeername
WSAStartup
gethostname
inet_ntoa
ioctlsocket
select
__WSAFDIsSet
gethostbyname
inet_addr
htonl
connect
ntohl
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
recv
accept
listen
WSACreateEvent
WSAEventSelect
send
WSACloseEvent
closesocket
recvfrom
setsockopt

advapi32

RegCloseKey
DeleteService
ControlService
OpenServiceA
StartServiceA
QueryServiceStatus
OpenSCManagerA
CreateServiceA
ChangeServiceConfig2A
CloseServiceHandle
RegisterServiceCtrlHandlerA
SetServiceStatus
StartServiceCtrlDispatcherA
RegOpenKeyA

ole32

CoInitialize
CoCreateGuid
CoUninitialize
CoCreateInstance

oleaut32

SysStringLen
SysAllocString
VariantClear
SysFreeString

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
IsValidLocale
FreeEnvironmentStringsA
SetUnhandledExceptionFilter
GetModuleHandleA
GetStdHandle
SetHandleCount
SetEndOfFile
SetStdHandle
UnhandledExceptionFilter
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetLocaleInfoW
SetEnvironmentVariableA
FreeEnvironmentStringsW
LocalAlloc
SetLastError
TlsAlloc
GetCurrentThreadId
HeapSize
CompareStringW
CompareStringA
GetCPInfo
LCMapStringW
LCMapStringA
HeapReAlloc
HeapAlloc
HeapFree
GetVersion
GetCommandLineA
CreateEventA
WaitForSingleObject
SetEvent
GetTickCount
Sleep
InitializeCriticalSection
DeleteCriticalSection
CloseHandle
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
MultiByteToWideChar
InterlockedIncrement
GetTempPathA
GetPrivateProfileStringA
InterlockedDecrement
QueryPerformanceCounter
GetSystemTime
CopyFileA
GetModuleFileNameA
MoveFileA
LocalFree
GetSystemDirectoryA
GetVersionExA
GetProcAddress
LoadLibraryA
GetLocalTime
WideCharToMultiByte
FindClose
FindNextFileA
FindFirstFileA
CreateProcessA
GetLastError
GetDiskFreeSpaceExA
GetLogicalDriveStringsA
TerminateProcess
ReadFile
PeekNamedPipe
GetWindowsDirectoryA
GetStartupInfoA
CreatePipe
lstrlenA
InterlockedExchange
ResumeThread
CreateThread
TlsSetValue
TlsGetValue
ExitThread
RtlUnwind
GetTimeZoneInformation
GetFileType
CreateFileA
CreateDirectoryA
DeleteFileA
FlushFileBuffers
WriteFile
SetFilePointer
GetSystemTimeAsFileTime
RaiseException
ExitProcess
GetCurrentProcess

Sections

.text
Size: 364KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16c68810346e831b5d67027c1e1dddf6

Headers

File Characteristics

Imports

ws2_32

advapi32

ole32

oleaut32

version

kernel32

Sections

.text Size: 364KB - Virtual size: 361KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 52KB - Virtual size: 77KB

.rsrc Size: 36KB - Virtual size: 35KB

.text
Size: 364KB - Virtual size: 361KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 52KB - Virtual size: 77KB

.rsrc
Size: 36KB - Virtual size: 35KB