b04c1d4eb431c359f114091ff2a47917_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b04c1d4eb431c359f114091ff2a47917_JaffaCakes118
Size

139KB
MD5

b04c1d4eb431c359f114091ff2a47917
SHA1

22ed237f3442e347b94de46e45d7eae57889be1a
SHA256

2ee0bc7ca18d0253ffda6151b38098e2ed61fa995e08fcd3213251390e95309b
SHA512

68acdde937a9cdf232ff3c75ec811adb51c6c26ea9a9875abd9c2ece1b527148c5015daa6109c23cabfe8803243cbcfd5d4a6d80d09be63d420c26a78c7bffda
SSDEEP

3072:MDzKW0aCydahU6+DWbWCCmSBytQOUUwrCJy:AKzHyKBiWSHdytQyw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b04c1d4eb431c359f114091ff2a47917_JaffaCakes118

Files

b04c1d4eb431c359f114091ff2a47917_JaffaCakes118
.exe windows:4 windows x86 arch:x86

36e1aa9977f28daa7fd43b5b11e0cc2e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
ExitProcess
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetStartupInfoA
GetTimeFormatA
LocalAlloc
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
TlsGetValue
lstrcatA

user32

IsCharUpperA
GetDC
GetCursor
DrawIcon
SetMenuInfo
DeleteMenu
CreateIconFromResourceEx
CreateDesktopA
CharPrevA
DestroyCaret

advapi32

LsaICLookupNames
LsaLookupNames
RegEnumKeyA
RegQueryValueA
LsaGetSystemAccessAccount
LsaGetQuotasForAccount
LsaEnumerateTrustedDomains
LsaEnumeratePrivilegesOfAccount
LsaEnumerateAccountsWithUserRight
LsaEnumerateAccounts
LsaEnumerateAccountRights
LsaDeleteTrustedDomain
LsaCreateAccount
LsaGetUserName

msvbvm60

__vbaForEachCollAd
__vbaFileCloseAll
__vbaExitEachColl
__vbaExceptHandler
__vbaError
__vbaEraseKeepData
__vbaDateR8
__vbaCyUI1
__vbaCyStr
__vbaCySgn
__vbaCyForInit
__vbaCopyBytesZero
__vbaCheckType
__vbaCastObjVar
__vbaBoolVarNull
__vbaBoolErrVar
__vbaAryVarVarg
__vbaAryRecMove
__vbaAryRecCopy
__vbaCyI4

dinput

DirectInputCreateEx

Exports

Exports

Arreqblu
Bakf
Cbrmpsjq
Eh
Mhfp
Mhrfrcnmfq
Mixfwqiublx
Oelraapiyrt
Puoxv
Pyvudl
Wgyzyr
Ydcy

Sections

.text
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

36e1aa9977f28daa7fd43b5b11e0cc2e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvbvm60

dinput

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 16KB

.rdata Size: 45KB - Virtual size: 48KB

.data Size: 69KB - Virtual size: 72KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 9KB - Virtual size: 12KB

.text
Size: 13KB - Virtual size: 16KB

.rdata
Size: 45KB - Virtual size: 48KB

.data
Size: 69KB - Virtual size: 72KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 9KB - Virtual size: 12KB