ceef64f2b93d4a0da429eb95e3154c68_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ceef64f2b93d4a0da429eb95e3154c68_JaffaCakes118
Size

172KB
MD5

ceef64f2b93d4a0da429eb95e3154c68
SHA1

15c1f57713515cc71060ac0ff32eeb07547951ac
SHA256

abb6ebf0d0d3710f405556447117cc7f51c1f6cb422aefcdfce1ae18f21bcff0
SHA512

6db45e6023624afbe5afbd6fa2354c0a5961bbd714b0275a9ffbf173ae3f38d3dd03658ed61677bafec224851285a691acd5076dcfb9734332874ba0bd52737f
SSDEEP

3072:NU4Qrqmh8Nh5iz/TRBfVlLgh5Nhhuu8lal8skzmM4Pjie:NU4MdhlrVdUTuu1ye

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ceef64f2b93d4a0da429eb95e3154c68_JaffaCakes118

Files

ceef64f2b93d4a0da429eb95e3154c68_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e6fb3c2beb2baaa847a8b2b75e7e1317

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

UnmapViewOfFile
CreateFileW
CreateFileMappingW
MultiByteToWideChar
WideCharToMultiByte
GetTempFileNameA
SetFilePointer
CreateFileMappingA
FindClose
FindFirstFileA
GetFileAttributesA
MapViewOfFile
MoveFileExW
GetFileType
Sleep
FindNextFileW
DisableThreadLibraryCalls
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
ExpandEnvironmentStringsW
GetVersionExW
lstrlenW
FreeLibrary
LoadLibraryW
ReadFile
HeapCreate
GetProcessHeap
CreateSemaphoreW
ReleaseMutex
CreateMutexW
SetEvent
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
InterlockedCompareExchange
GetCurrentProcessId
DeleteFileW
GetTempPathW
GetFullPathNameW
LoadLibraryExW
OpenProcess
GetTempFileNameW
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemInfo
HeapSize
GetCPInfo
GetOEMCP
GetACP
GetEnvironmentStringsW
GetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FindNextFileA
LocalFree
GetProcAddress
LoadLibraryA
SetFileTime
CreateDirectoryA
RemoveDirectoryA
CreateFileA
DeviceIoControl
SetErrorMode
WriteFile
CopyFileA
CloseHandle
FlushFileBuffers
GetTempPathA
SetFileAttributesA
DeleteFileA
GetCurrentProcess
GetCommandLineA
DuplicateHandle
VirtualProtect
GetModuleFileNameA
GetStartupInfoA
GetStdHandle
SetHandleCount
GetModuleHandleA
ExitProcess
VirtualQuery
HeapAlloc
HeapFree
RtlUnwind
GetVersionExA
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc

user32

wsprintfA
CharLowerA
SendMessageW
EnableWindow
GetDlgItem
MessageBoxW
TranslateMessage
DispatchMessageW
MsgWaitForMultipleObjects
PeekMessageW
LoadStringW
GetWindowContextHelpId
CheckDlgButton
EndDialog
IsDlgButtonChecked
AppendMenuW
MessageBeep
EnableMenuItem

advapi32

RegDeleteKeyW
RegQueryInfoKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
OpenProcessToken
RegDeleteValueA
RegUnLoadKeyA
RegLoadKeyA
GetLengthSid
LookupAccountNameA
LookupAccountSidA
GetTokenInformation
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegEnumKeyExW

ole32

StringFromGUID2
CoTaskMemFree
CLSIDFromString
CoTaskMemAlloc
CoFreeLibrary

rpcrt4

NdrDllRegisterProxy

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6fb3c2beb2baaa847a8b2b75e7e1317

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

rpcrt4

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 36KB - Virtual size: 71KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 36KB - Virtual size: 71KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 7KB