b27d9dab9d91e2354a9f6cfdf63630d3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b27d9dab9d91e2354a9f6cfdf63630d3_JaffaCakes118
Size

184KB
MD5

b27d9dab9d91e2354a9f6cfdf63630d3
SHA1

1518f62183ab93de328d186292ae48a0ed4d3b74
SHA256

eb2b0b6402f903f0349bf32076561d9d275796dfa22dced4fb4f500d1e64d71d
SHA512

ceb2b2c890547b7b6a75edbd5ec8c2c2cc51925d374f45751fd7dc77d5e1368171220a203e3fb404844e5842cbbe690afd9257912fed4d1eae7dc20600fb3d9c
SSDEEP

3072:DrQPALHH8NvCw7HY+zSJ0tiMqqDLy/cMqqDLy/0MqqDLy/MMqqDLy/bR:gP+HcYw7fqqDLuvqqDLuXqqDLu/qqDLQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b27d9dab9d91e2354a9f6cfdf63630d3_JaffaCakes118

Files

b27d9dab9d91e2354a9f6cfdf63630d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b08bba1794a836f1162c279fc9d8d7c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVolumeInformationA
SetFilePointer
CreateMutexA
ReleaseMutex
SetStdHandle
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
HeapSize
GetVersion
GetStringTypeW
GetStringTypeA
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
RaiseException
GetOEMCP
GetCPInfo
GetStdHandle
ExitProcess
lstrcpynA
GetModuleFileNameA
SetConsoleCtrlHandler
LoadLibraryW
FindResourceA
LoadResource
LockResource
SizeofResource
SetCurrentDirectoryA
FormatMessageA
SetLastError
WriteFile
GetCurrentProcess
lstrlenW
SetEnvironmentVariableA
WideCharToMultiByte
DeleteCriticalSection
InitializeCriticalSection
GetCurrentDirectoryA
CreateFileA
CopyFileA
SetFileAttributesA
TerminateThread
lstrlenA
MultiByteToWideChar
GetTickCount
LoadLibraryA
GetProcAddress
CreateThread
Sleep
GetSystemDirectoryA
GetLastError
WaitForSingleObject
TerminateProcess
EnterCriticalSection
FreeLibrary
DeleteFileA
CloseHandle
GetModuleHandleA
LeaveCriticalSection
SetEvent
GetCurrentProcessId
CreateEventA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
CompareStringA
CompareStringW
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
InterlockedDecrement
GetCurrentThreadId
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsDebuggerPresent
SetUnhandledExceptionFilter
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
RtlUnwind
HeapReAlloc
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetCommandLineA
GetProcessHeap
GetStartupInfoA
UnhandledExceptionFilter

user32

GetMessageA
wsprintfA
wsprintfW
PostThreadMessageA
UnregisterClassA
wvsprintfA
DispatchMessageA
GetDesktopWindow
DefWindowProcA
DestroyWindow
RegisterClassA
CreateWindowExA
ShowWindow
TranslateMessage
PostMessageA

advapi32

QueryServiceStatus
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
CreateServiceA
SetServiceStatus
StartServiceA
ControlService
RegisterEventSourceA
ReportEventA
DeregisterEventSource
OpenSCManagerA
OpenServiceA
CloseServiceHandle
DeleteService
OpenProcessToken
DuplicateTokenEx
SetTokenInformation
CreateProcessAsUserA
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

shlwapi

StrCmpW

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b08bba1794a836f1162c279fc9d8d7c7

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

shlwapi

version

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 56KB - Virtual size: 63KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 56KB - Virtual size: 63KB

.rsrc
Size: 8KB - Virtual size: 4KB