b116e95ad82a7116abf3d67268f08e25_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b116e95ad82a7116abf3d67268f08e25_JaffaCakes118
Size

273KB
MD5

b116e95ad82a7116abf3d67268f08e25
SHA1

645cfed10b7197290f227c793357741d3ee73456
SHA256

07d2d4ab2f119cc8f83e6b7e1084035f5c67f8183537576ea3a0a88f561f01de
SHA512

8ded540560c9c82a330e8e8f9efaea0acf327f1f22cae90a54a08902856c3eb6519b3d0dce57710c69460cadc27f62e59b4fe8a55631adad74edb79eaccd6ef0
SSDEEP

6144:QIkiNG5MKJZfqkpPJhaLwH8yONw7SCWwEvDNMFyVLZQ9T:VkNlqk9qkhFSCW/pLZWT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b116e95ad82a7116abf3d67268f08e25_JaffaCakes118

Files

b116e95ad82a7116abf3d67268f08e25_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54ed9214af2041b28f8dd214296c709f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetModuleHandleA
GetSystemDirectoryW
GetLongPathNameW
GetCurrentThreadId
GetProcessHeap
TlsAlloc
FileTimeToSystemTime
GetACP
GetOEMCP
IsValidCodePage
SetUnhandledExceptionFilter
IsDebuggerPresent
FreeLibrary
GetUserDefaultLCID
IsValidLocale
GetTimeFormatA
GetDateFormatA
Beep
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
CreateDirectoryA
RemoveDirectoryA
GetCurrentDirectoryW
SetCurrentDirectoryW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
MoveFileA
RaiseException
WaitForSingleObject
GetSystemInfo
DuplicateHandle
CreatePipe
SystemTimeToFileTime
CreateMutexW
GetProcAddress

samlib

SamOpenAlias
SamCloseHandle
SamConnect
SamSetSecurityObject
SamDeleteUser
SamQueryDisplayInformation
SamRemoveMemberFromAlias
SamiLmChangePasswordUser
SamSetInformationUser

kbdgr1

KbdLayerDescriptor

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.TV
Size: 3KB - Virtual size: 631KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Zc
Size: 1KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bDPR
Size: 3KB - Virtual size: 431KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rtgnO
Size: 4KB - Virtual size: 369KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HH
Size: 86KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PZu
Size: 1024B - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bZyVmU
Size: 4KB - Virtual size: 967KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Ciq
Size: 127KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CeOA
Size: 5KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rkzzkm
Size: 2KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54ed9214af2041b28f8dd214296c709f

Headers

File Characteristics

Imports

kernel32

samlib

kbdgr1

Sections

.text Size: 14KB - Virtual size: 13KB

.TV Size: 3KB - Virtual size: 631KB

.Zc Size: 1KB - Virtual size: 185KB

.rdata Size: 1KB - Virtual size: 38KB

.bDPR Size: 3KB - Virtual size: 431KB

.rtgnO Size: 4KB - Virtual size: 369KB

.HH Size: 86KB - Virtual size: 94KB

.PZu Size: 1024B - Virtual size: 155KB

.bZyVmU Size: 4KB - Virtual size: 967KB

.data Size: 6KB - Virtual size: 225KB

.Ciq Size: 127KB - Virtual size: 167KB

.CeOA Size: 5KB - Virtual size: 266KB

.rkzzkm Size: 2KB - Virtual size: 354KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 14KB - Virtual size: 13KB

.TV
Size: 3KB - Virtual size: 631KB

.Zc
Size: 1KB - Virtual size: 185KB

.rdata
Size: 1KB - Virtual size: 38KB

.bDPR
Size: 3KB - Virtual size: 431KB

.rtgnO
Size: 4KB - Virtual size: 369KB

.HH
Size: 86KB - Virtual size: 94KB

.PZu
Size: 1024B - Virtual size: 155KB

.bZyVmU
Size: 4KB - Virtual size: 967KB

.data
Size: 6KB - Virtual size: 225KB

.Ciq
Size: 127KB - Virtual size: 167KB

.CeOA
Size: 5KB - Virtual size: 266KB

.rkzzkm
Size: 2KB - Virtual size: 354KB

.rsrc
Size: 11KB - Virtual size: 11KB