be8af64922c56ae40907878b04c57152_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

be8af64922c56ae40907878b04c57152_JaffaCakes118
Size

110KB
MD5

be8af64922c56ae40907878b04c57152
SHA1

fe5f592060c46b1385b229861f1aa5666b5708a5
SHA256

aa07d003a3970d590cabf83036684f16d5afe6c829bc62973609d63cd2f7aaae
SHA512

47b614c85d0a85b673b76a7d8e7381ae31d43e719f1551747b777ebebe14831d4e582c59d91826cf32f02a2cab5e0c243eb0a6724c2b61cf7b88535aa241056b
SSDEEP

3072:ZaYFy1leJSwWvThaop1zy7dZ4SmuqeYDrdzs2wemxLtgU:MYFaUvWLpov4rTeYDlsxvL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be8af64922c56ae40907878b04c57152_JaffaCakes118

Files

be8af64922c56ae40907878b04c57152_JaffaCakes118
.dll windows:1 windows x86 arch:x86

bccab6b88ab8b05cbdbfa42962ee0c9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBAndTimeoutsA
BuildCommDCBAndTimeoutsW
CompareStringA
CreateFileA
ExitProcess
FlushInstructionCache
GetCommMask
GetCommState
GetConsoleAliasW
GetConsoleTitleA
GetCurrentConsoleFont
GetCurrentThread
GetDefaultCommConfigW
GetEnvironmentVariableA
GetFileSize
GetFullPathNameA
GetModuleFileNameA
GetPrivateProfileStringW
GetProcessShutdownParameters
GetStringTypeExW
GetSystemDefaultLangID
GetVDMCurrentDirectories
GlobalLock
HeapSummary
InterlockedDecrement
LCMapStringA
OpenEventA
ReadConsoleOutputW
SetComputerNameW
SetConsoleCursor
SetErrorMode
SetTapeParameters
Sleep
VDMConsoleOperation
VerLanguageNameA
VirtualProtect
WaitForDebugEvent
WriteConsoleW
WriteConsoleInputA
WriteConsoleInputVDMA
_hwrite
lstrcmpA
lstrcmpiA

user32

DdeDisconnect
DdePostAdvise
DefFrameProcW
DlgDirListA
DrawIconEx
GetAltTabInfoW
GetClassInfoA
GetClassWord
GetClientRect
GetDialogBaseUnits
GetMenuState
GetMessagePos
GetWindowRect
IMPSetIMEW
InsertMenuItemA
ModifyMenuA
SendMessageTimeoutW
SetDebugErrorLevel
SetMenuItemBitmaps
SetRectEmpty
ToAscii
UnionRect
wsprintfW

gdi32

CombineRgn
CreateFontIndirectW
CreateSolidBrush
DeleteObject
GdiComment
GdiSetBatchLimit
GetClipBox
GetClipRgn
GetEnhMetaFileDescriptionW
GetLogColorSpaceW
GetOutlineTextMetricsA
GetPath
GetPixel
GetPixelFormat
GetRandomRgn
GetTextColor
GetTextFaceA
GetTextFaceW
PolyTextOutW
SetDeviceGammaRamp
SetWorldTransform
StartPage

advapi32

AddAccessDeniedAceEx
CryptSetProviderExA
ElfClearEventLogFileA
ElfReportEventW
GetAclInformation
GetNamedSecurityInfoW
GetSecurityDescriptorLength
GetServiceKeyNameW
LockServiceDatabase
LsaDelete
LsaNtStatusToWinError
ObjectCloseAuditAlarmA
QueryServiceObjectSecurity
RegQueryInfoKeyW
RegSetValueW
RegUnLoadKeyW
SetServiceBits
SetServiceStatus

msvcrt

_eof
_fpieee_flt
_getmaxstdio
_pclose
_wfreopen
_wfsopen
fopen
printf
puts
strerror
tan
ungetwc
wcscpy
wcsncpy
wcstol

Exports

Exports

BOqstqoWtRuajv
BvgeNl
CozZzhqqfVagl
FckyPilra
JxuNGgux
LGxDztcu
LvHaxXeyvfLbhm
UpySug
XlubdzJvjs
YwgMgbRldveoS
ZlffHe
ZpRgoBoFjsANVzwqh

Sections

.text
Size: 8KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 512B - Virtual size: 305B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bccab6b88ab8b05cbdbfa42962ee0c9c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 263KB

.data Size: 95KB - Virtual size: 98KB

.xdata Size: 512B - Virtual size: 305B

.rdata Size: 2KB - Virtual size: 9KB

.rsrc Size: 1024B - Virtual size: 796B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 263KB

.data
Size: 95KB - Virtual size: 98KB

.xdata
Size: 512B - Virtual size: 305B

.rdata
Size: 2KB - Virtual size: 9KB

.rsrc
Size: 1024B - Virtual size: 796B

.reloc
Size: 2KB - Virtual size: 1KB