b76a780f99f4fec19589c167cf748189_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b76a780f99f4fec19589c167cf748189_JaffaCakes118
Size

22KB
MD5

b76a780f99f4fec19589c167cf748189
SHA1

82a0d561a8561c1159434437fec2e8848d1f37f8
SHA256

7cdc013b82c2233555fff98206155c53bf7e56f9bdca7ed4a81fe96d28e7bb3d
SHA512

d1dd380e179e43574557577dc73a14575b753cb0bfdcf88a44212bdd86900588c374ab9eb3036b28c043c742066accfa79feff9f351f174f9e29b4b91ef1be63
SSDEEP

384:0aK4Km4iVSXgxKAP13FNSeshIHKfp4Akho2YCdvAQs6gENfCV6K:0l4d/VSwMe1bcAKBkDO6Rfa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b76a780f99f4fec19589c167cf748189_JaffaCakes118

Files

b76a780f99f4fec19589c167cf748189_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f28374fbd6634c8e6aae313293b0f7c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcp60

?at@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAGI@Z
??Ostd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??_0?$_Complex_base@O@std@@QAEAAV01@ABO@Z
?get@?$basic_istream@GU?$char_traits@G@std@@@std@@QAEGXZ
?_Init@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEXABV_Locinfo@2@@Z
?id@?$numpunct@D@std@@2V0locale@2@A
??0?$collate@G@std@@QAE@I@Z
?pubsync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?open@?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAEPAV12@PBDF@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??A?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAGI@Z
??_7?$moneypunct@G$00@std@@6B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
??0?$numpunct@G@std@@QAE@I@Z

wldap32

ldap_search_stA
ldap_bind
ldap_parse_extended_resultW
ldap_modrdnA
ldap_free_controls
ldap_delete_ext_sW
ldap_stop_tls_s
ldap_delete_ext_s
ldap_memfreeA
ldap_count_valuesA
ldap_add
ldap_explode_dnW
ldap_parse_resultW
ldap_first_entry

kernel32

HeapQueryInformation
GetCalendarInfoW
SetConsoleHardwareState
WriteConsoleOutputCharacterA
CreateDirectoryExA
SetEnvironmentVariableA
GetNextVDMCommand
MoveFileA
SetConsoleWindowInfo
VirtualAlloc
SetTapeParameters
SetConsoleCP
CallNamedPipeA
InterlockedFlushSList
GetConsoleCommandHistoryLengthW
QueryActCtxW
GetCommTimeouts
GetConsoleOutputCP

msvcrt40

?rdbuf@ios@@QBEPAVstreambuf@@XZ
_ismbcalnum
?delbuf@ios@@QBEHXZ
?setb@streambuf@@IAEXPAD0H@Z
_setjmp3
_wsearchenv
ldexp
_ltoa
acos
_adj_fdiv_m16i
puts
??_8fstream@@7Bostream@@@
_CIsinh
_stricmp
??_8iostream@@7Bistream@@@

msvcrt20

?is_open@ifstream@@QBEHXZ
_mbsncat
?sgetn@streambuf@@QAEHPADH@Z
_futime
_mbctokata
_wrmdir
_tcscmp
_vsnprintf
_wspawnv
_fmode
_wspawnl
??4ostream@@IAEAAV0@ABV0@@Z
??5istream@@QAEAAV0@AAG@Z

msoert2

IsPrint

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 633B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f28374fbd6634c8e6aae313293b0f7c0

Headers

DLL Characteristics

File Characteristics

Imports

msvcp60

wldap32

kernel32

msvcrt40

msvcrt20

msoert2

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 1024B - Virtual size: 633B

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 1024B - Virtual size: 633B

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB