ce240b0b3995240961f5c74d6015c0f3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce240b0b3995240961f5c74d6015c0f3_JaffaCakes118
Size

146KB
MD5

ce240b0b3995240961f5c74d6015c0f3
SHA1

92ef61df3866d18dd3c55d452ef5af64ebc1ca98
SHA256

8eda4c032609bf2b72477d94b4d0964fc9ff98381cf7eef3e059ea222b1e05b8
SHA512

4c91ee9492974661ecee758650d54bb83c8b0a712fde7c31678d6f61147e02784b8c169ec6ff36722c038d98b158b4bb059157a041d3fb6b9a923f2335683bf2
SSDEEP

768:cSuBtD4ryrThYU5ySd5wL5FR3sD1MjDuF2eV9Sb5D2hhY0X+jncIG0fEY:rHiThYuhkOpMChkNDSLOjnch0fE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce240b0b3995240961f5c74d6015c0f3_JaffaCakes118

Files

ce240b0b3995240961f5c74d6015c0f3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f945d814eacb835cec3bc0723db678ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatA
ReadConsoleInputA
GlobalSize
LZInit
GetDiskFreeSpaceExA
GetConsoleCursorInfo
CreateEventA
OpenThread
GetDriveTypeA
GetProcessIoCounters
FindNextVolumeMountPointA
FindNextVolumeW
LoadLibraryA
DeleteTimerQueueTimer
SetConsoleIcon
ReadFileScatter
GetFileTime
WriteConsoleOutputCharacterW
OpenFileMappingA
GetProfileIntA
WaitForSingleObject
GetConsoleFontSize
SetUnhandledExceptionFilter
WriteConsoleOutputA
SetVolumeLabelA
UnlockFile
EnumTimeFormatsA
MapUserPhysicalPages
GetProcessId
GetThreadContext
VirtualAlloc
WriteConsoleOutputCharacterA
GetBinaryTypeA
OpenEventA
OpenSemaphoreA
GetUserDefaultLangID
PurgeComm
SearchPathA
PeekConsoleInputA
GetThreadContext
GetCurrentThread
TerminateProcess
GetThreadPriorityBoost
GetStdHandle
GetCurrentProcess
GetDllDirectoryA
FlushInstructionCache
WriteProfileSectionA
GetLocaleInfoA
HeapQueryInformation
SetVolumeMountPointA
ReadConsoleA
GetStringTypeExW
GetProcessHeap
GetConsoleCommandHistoryA
GetPrivateProfileIntA
GetLogicalDriveStringsA
GetModuleHandleA
lstrlenA
Module32Next
GetAtomNameA
GetSystemWindowsDirectoryA
SetFilePointerEx
ReadConsoleOutputCharacterA
VirtualQuery
SetConsoleInputExeNameA
lstrcmp
VirtualAlloc
AllocConsole
CopyFileExW
CommConfigDialogA
UpdateResourceA
FindNextVolumeA
SetPriorityClass
ReleaseMutex
RemoveDirectoryA
GetFullPathNameA
CreateDirectoryExA
WideCharToMultiByte
IsProcessorFeaturePresent
CreateDirectoryA
SetProcessPriorityBoost
TransmitCommChar
HeapValidate
FindFirstChangeNotificationA
GetFileInformationByHandle
LockFile
SetConsoleHardwareState
SetFileAttributesA
ChangeTimerQueueTimer
WriteConsoleOutputAttribute
GetModuleFileNameA
QueryPerformanceFrequency
SetThreadAffinityMask
GetConsoleKeyboardLayoutNameA
SetConsoleWindowInfo
FindNextVolumeMountPointW
SetVolumeLabelW
GetConsoleWindow
SetConsoleOutputCP
GetWindowsDirectoryA
ReleaseSemaphore
SetComputerNameA
FindCloseChangeNotification
SetLocalPrimaryComputerNameA
GetNamedPipeInfo

dhcpcsvc

DhcpUndoRequestParams

odbc32

SQLExecute
SQLSetStmtAttr

d3d9

Direct3DCreate9

Exports

Exports

OpenCfhbwukxsav
Wtjeofoge
InitKnbbmian
Unncnmtf
InitYyxoafhisu
Bawyudaigd
Vgmvxbhhgib
Jtlvdhbxpe
InitUhlfjmn
AddFodvckvwd
Rxyxsmyp
SetNubthrr
WriteWudkcorr
Tnohhaiil
Gtgswdbh
SetVlihotqtby
Fbhstffun
Jekicndxrp

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wjuvxux
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f945d814eacb835cec3bc0723db678ec

Headers

File Characteristics

Imports

kernel32

dhcpcsvc

odbc32

d3d9

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 1024B - Virtual size: 600B

.idata Size: 3KB - Virtual size: 2KB

.rdata Size: 5KB - Virtual size: 16KB

.edata Size: 512B - Virtual size: 452B

.rsrc Size: 28KB - Virtual size: 29KB

wjuvxux Size: - Virtual size: 4KB

.gdata Size: 76KB - Virtual size: 76KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 1024B - Virtual size: 600B

.idata
Size: 3KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 16KB

.edata
Size: 512B - Virtual size: 452B

.rsrc
Size: 28KB - Virtual size: 29KB

wjuvxux
Size: - Virtual size: 4KB

.gdata
Size: 76KB - Virtual size: 76KB