c02bf11d187f3742324525758e866b35_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c02bf11d187f3742324525758e866b35_JaffaCakes118
Size

644KB
MD5

c02bf11d187f3742324525758e866b35
SHA1

b38b694c740c68d0d819e6a5579d6271d3bbe520
SHA256

99f928586f6449f31d04ffd013d4afcab8e7de8c71ad8553c5f34b6cfcf79332
SHA512

5d6b317aacd9be22d5ec334cf44368d13b3a22c801b5100b0d765d2bdb3667640c112e01f4a409be2d09ecb768808f669aaf33dfd13ebcb1a36e1a267e82adee
SSDEEP

12288:1E0JHQn63tBcR0Hs0oHz+h4cNAk41f9mEZ1GAVau:in6d6OFczxca1f9lZT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c02bf11d187f3742324525758e866b35_JaffaCakes118

Files

c02bf11d187f3742324525758e866b35_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6140e15478ecd330e67e3a8793bf786d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

filemgmt

CacheSettingsDlg

odbccp32

ODBCCPlApplet
SQLConfigDataSource
SQLConfigDataSourceW
SQLConfigDriver
SQLConfigDriverW
SQLCreateDataSource
SQLCreateDataSourceEx
SQLCreateDataSourceExW
SQLCreateDataSourceW
SQLGetAvailableDrivers
SQLGetAvailableDriversW
SQLGetConfigMode
SQLGetInstalledDrivers
SQLGetInstalledDriversW
SQLGetPrivateProfileString
SQLGetPrivateProfileStringW
SQLGetTranslator
SQLGetTranslatorW
SQLInstallDriver
SQLInstallDriverEx
SQLInstallDriverExW
SQLInstallDriverManager
SQLInstallDriverManagerW
SQLInstallDriverW
SQLInstallODBC
SQLInstallODBCW
SQLInstallTranslator
SQLInstallTranslatorEx
SQLInstallTranslatorExW
SQLInstallTranslatorW
SQLInstallerError

kernel32

ExitProcess
GetTickCount
GetWindowsDirectoryA
GetCommTimeouts
GlobalFindAtomA
GetSystemTime
GetStartupInfoA
IsValidLocale
RegisterWowExec
GlobalFindAtomW
_lopen
ReleaseMutex
_lread

hhsetup

??0CCollection@@QAE@XZ
??0CFIFOString@@QAE@XZ
??0CFolder@@QAE@XZ
??0CLocation@@QAE@XZ
??0CPointerList@@QAE@XZ
??0CTitle@@QAE@XZ
??1CCollection@@QAE@XZ
??1CFIFOString@@QAE@XZ

osuninst

RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage
RemoveUninstallImage

Sections

.text
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 158KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 584KB - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.neolit
Size: 5KB - Virtual size: 8KB

Sharing

General

Malware Config

Signatures

Files

6140e15478ecd330e67e3a8793bf786d

Headers

File Characteristics

Imports

filemgmt

odbccp32

kernel32

hhsetup

osuninst

Sections

.text Size: 28KB - Virtual size: 35KB

.data Size: 14KB - Virtual size: 158KB

.rsrc Size: 584KB - Virtual size: 588KB

.neolit Size: 5KB - Virtual size: 8KB

.text
Size: 28KB - Virtual size: 35KB

.data
Size: 14KB - Virtual size: 158KB

.rsrc
Size: 584KB - Virtual size: 588KB

.neolit
Size: 5KB - Virtual size: 8KB