b12fa77c867dfda09c045a560796e860_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b12fa77c867dfda09c045a560796e860_JaffaCakes118
Size

906KB
MD5

b12fa77c867dfda09c045a560796e860
SHA1

e659da0f3b2c05e36627aa275dae2ee8773225d5
SHA256

6272b3dd8e83270d22e49162f902fc1de28dc9c37f5c58642a45ff64ada6ad07
SHA512

42936837e35c8ab046cf72491d1a96eebb09a382391944da3330ff71ee5461b9cc9768eb8a0e03a48f79111a052e127df52c3c26865dd173595b4df21bcf82b8
SSDEEP

24576:krYhUhHbr8CZvsWMfPTXQcUTzAmCi6CgX:krY2RbXs8XTzAZCgX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b12fa77c867dfda09c045a560796e860_JaffaCakes118

Files

b12fa77c867dfda09c045a560796e860_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5f8e2e9dc50c941bc9c0cfcd585ac441

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
OpenSemaphoreW
GetLogicalDriveStringsA
TryEnterCriticalSection
GetShortPathNameW
DebugBreak
GetSystemInfo
FindNextChangeNotification
GetCurrentProcessId
GetStartupInfoA
SetProcessAffinityMask
CreateEventA
LoadResource
ReadConsoleA
WritePrivateProfileStringA
GetThreadContext
CreateDirectoryW
FindCloseChangeNotification
SystemTimeToFileTime
VirtualLock
GetFileAttributesA
GetTempPathW
OpenMutexA
GetDiskFreeSpaceW
LocalLock
lstrcatW
SetupComm
RemoveDirectoryW
GetEnvironmentVariableW
SetCommMask
GlobalAddAtomA
EraseTape
Beep
TlsGetValue
VirtualUnlock
lstrcmpiA
SuspendThread
FreeLibrary
GetCompressedFileSizeW
ExitProcess

ws2_32

WSAAsyncGetServByPort
WSACancelAsyncRequest
select
WSARecvFrom
WSAStringToAddressA
htonl
WSASetServiceW
WSAHtons

comctl32

CreatePropertySheetPageA

ole32

CreateOleAdviseHolder
OleBuildVersion
StgCreateStorageEx
OleSetContainedObject

user32

GetWindowTextW
GetSystemMetrics
EmptyClipboard
LookupIconIdFromDirectory
GetMonitorInfoA
LoadMenuA
DialogBoxParamW
WinHelpA
GetWindowRgn
GetWindowTextA
LoadBitmapW
ShowCaret
SendInput
PostThreadMessageW
OpenIcon
RegisterWindowMessageA
LoadCursorA
DefFrameProcA
CreateMenu
MonitorFromRect
DragDetect
DestroyCursor
DrawCaption
SetScrollPos
LoadImageA
CharUpperW
CheckMenuRadioItem

Sections

.text
Size: 2KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 590KB - Virtual size: 589KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f8e2e9dc50c941bc9c0cfcd585ac441

Headers

File Characteristics

Imports

kernel32

ws2_32

comctl32

ole32

user32

Sections

.text Size: 2KB - Virtual size: 219KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 590KB - Virtual size: 589KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 219KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 590KB - Virtual size: 589KB

.rsrc
Size: 17KB - Virtual size: 16KB