c20a29d7fea47508a859125e04db26df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c20a29d7fea47508a859125e04db26df_JaffaCakes118
Size

31KB
MD5

c20a29d7fea47508a859125e04db26df
SHA1

ed5905887a114e84812ee05f01aa4c26356bac91
SHA256

31b9dac523ad88d6603191ddd201b445cb706aed70bdcb7d0e05056971f6c0c2
SHA512

5e66a9ad335a6d50835d2c69134105774c47228a95409028ccd445947db03be757fd4d9685d196110cb45f4187f994875dd6858c7c3a60137bd12731b3a7966e
SSDEEP

384:iEoAVBIhmALRk/7FPfKS0en2JQIfUc2wOGxTT/gyESmwVyGaj2:D8hZVQaMQ4niVZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c20a29d7fea47508a859125e04db26df_JaffaCakes118

Files

c20a29d7fea47508a859125e04db26df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5833864c0ba1a038dbd916075fdfc1eb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
SHGetFileInfoA

kernel32

CloseHandle
GetCPInfo
SetConsoleCtrlHandler
FindFirstFileA
GetFullPathNameA
FreeEnvironmentStringsW
GetCurrentProcess
CompareStringA
GetVersion
VirtualFree
LeaveCriticalSection
GetPrivateProfileIntA
GetLocalTime
lstrcmpiA
SetEndOfFile
FindClose
HeapCreate
LocalFree
IsValidCodePage
InterlockedDecrement
GetFileSize
GlobalHandle
GlobalLock
LocalFileTimeToFileTime
UnlockFile
WaitForSingleObject
VirtualAlloc
SetUnhandledExceptionFilter
HeapAlloc
TerminateProcess
GetEnvironmentVariableA
GetCurrentThreadId
TlsGetValue
GetCurrentThread
EnterCriticalSection
ReadFile
GetACP
FlushFileBuffers
GetProcessVersion
LocalReAlloc

advapi32

RegRestoreKeyA
RegOpenKeyExA
LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges
RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
RegEnumValueA
RegQueryInfoKeyA
RegCloseKey

samlib

SamTestPrivateFunctionsUser
SamiEncryptPasswords
SamConnectWithCreds
SamRemoveMultipleMembersFromAlias

comdlg32

GetFileTitleA

msi

MsiDatabaseExportA
MsiConfigureProductA
MsiConfigureFeatureW
MsiDatabaseCommit

setupapi

SetupDiSetDeviceRegistryPropertyA
SetupDiSetSelectedDriverA
SetupDiCreateDeviceInfoA
SetupDiGetDeviceInstallParamsA
SetupDiEnumDeviceInfo
SetupDiSetDeviceInstallParamsA
SetupDiOpenDevRegKey
SetupFindFirstLineA
SetupOpenInfFileA
SetupCloseInfFile
SetupDiEnumDriverInfoA
SetupFindNextLine
SetupGetStringFieldA
SetupDiClassGuidsFromNameA
SetupDiBuildDriverInfoList

gdi32

OffsetWindowOrgEx
GetViewportExtEx
TextOutA
SetBkMode
GetStockObject
PolylineTo
SetTextCharacterExtra
ExtSelectClipRgn
SetTextColor
PtVisible
CreatePen
IntersectClipRect
LineTo
ScaleWindowExtEx
GetWindowExtEx
RestoreDC

user32

SetFocus
IsWindowVisible
SendDlgItemMessageA
GetMessageA
CallMsgFilterA
CopyRect
ValidateRect
PtInRect
CallWindowProcA
PeekMessageA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5833864c0ba1a038dbd916075fdfc1eb

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

advapi32

samlib

comdlg32

msi

setupapi

gdi32

user32

Sections

.text Size: 1KB - Virtual size: 1KB

.idata Size: 3KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 44B

.rsrc Size: 7KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 80KB

.rdata Size: 512B - Virtual size: 224B

.text
Size: 1KB - Virtual size: 1KB

.idata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 44B

.rsrc
Size: 7KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 80KB

.rdata
Size: 512B - Virtual size: 224B