cf87af12d8aa9ad703eb773d4b47046f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

cf87af12d8aa9ad703eb773d4b47046f_JaffaCakes118
Size

35KB
MD5

cf87af12d8aa9ad703eb773d4b47046f
SHA1

1c19c5367c35703ac2c419fc8087def29b894157
SHA256

88db3767fbd14e217f08acb872e1dfca0a64f167acd5ec8baf20bc14a266ed88
SHA512

97897408d34e59f5e2800fc94599dc7ad2783d62abeb17b9d775c4dfd549f9dc8b7381ac79f4a490782cb4afe6af6e75b032b0af16f9aa6c40f7543ac5048736
SSDEEP

768:nqrxn+RvL9GZIjHqTspKiZTKZAH4XBLayRZzj3mVC9ylWrKbvRi:qQRvLwIjK4phKew5mVCs2KbM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf87af12d8aa9ad703eb773d4b47046f_JaffaCakes118

Files

cf87af12d8aa9ad703eb773d4b47046f_JaffaCakes118
.dll windows:1 windows x86 arch:x86

400be2641c3fa2ab94b3fffc1427fe00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BeginUpdateResourceW
CreateDirectoryExW
EnterCriticalSection
ExitProcess
FatalExit
FindAtomW
FlushInstructionCache
GetCommMask
GetCommState
GetConsoleFontSize
GetConsoleMode
GetFileSize
GetLongPathNameA
GetModuleFileNameA
GetNumberOfConsoleInputEvents
GetProfileIntW
GetSystemDirectoryW
GetVersion
GlobalWire
Heap32First
LoadLibraryExW
QueryPerformanceCounter
SetCommMask
SetCommTimeouts
SetConsoleMenuClose
SetEvent
Sleep
SystemTimeToTzSpecificLocalTime
Thread32First
UnmapViewOfFile
VirtualProtect
WriteFile
_lcreat
lstrcmpA
lstrcmpiA

user32

ActivateKeyboardLayout
AdjustWindowRect
ChangeClipboardChain
CreateCursor
DdeAbandonTransaction
DdeCreateDataHandle
DdeQueryNextServer
DeferWindowPos
DialogBoxIndirectParamA
DragObject
DrawTextExW
EmptyClipboard
EndDeferWindowPos
GetClassInfoW
GetClassWord
GetClipboardData
GetClipboardViewer
GetDialogBaseUnits
GetMenuState
GetUpdateRect
GetWindowTextLengthA
IMPSetIMEW
IsCharLowerA
IsMenu
LoadStringA
MenuItemFromPoint
OemToCharBuffW
OpenDesktopW
RegisterClassW
SetDlgItemInt
SetScrollRange
SetWindowPos

gdi32

AnimatePalette
CreateBitmap
CreateEllipticRgn
CreateEllipticRgnIndirect
ExtTextOutW
FillRgn
GdiComment
GetClipBox
GetClipRgn
GetMapMode
GetPath
GetPixel
GetPixelFormat
GetTextCharacterExtra
GetTextFaceA
GetTextFaceW
GetWindowOrgEx
OffsetClipRgn
PlayMetaFile
SaveDC
SetBkMode

comdlg32

GetFileTitleW
GetSaveFileNameA

advapi32

AddAuditAccessAceEx
ChangeServiceConfig2A
CreateRestrictedToken
CryptSetProviderW
CryptSignHashA
EnumServicesStatusA
GetNamedSecurityInfoW
LookupAccountSidA
LsaCreateAccount
LsaCreateTrustedDomain
LsaQueryInformationPolicy
ObjectOpenAuditAlarmW
OpenServiceW
PrivilegedServiceAuditAlarmW
RegCloseKey
RegDeleteKeyW
RegEnumValueA
RegQueryMultipleValuesW
RegRestoreKeyA
RegSetKeySecurity
ReportEventW
SetEntriesInAclA
SetSecurityInfo
SetSecurityInfoExW
SetServiceObjectSecurity

msvcrt

_cscanf
_hypot
_wchdir
_wpgmptr
_wputenv
fgetws
fputwc
iswascii
iswctype
iswdigit
memchr
strrchr
strxfrm
tanh
vsprintf
wcsrchr

Exports

Exports

AwqlsZ
FxaxlhcnVOX
IZTxXglyVfkSjjlclo
RdaNYbJfOhVdr

Sections

.text
Size: 4KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 141B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 954B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

400be2641c3fa2ab94b3fffc1427fe00

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 80KB

.data Size: 23KB - Virtual size: 33KB

.edata Size: 512B - Virtual size: 141B

.rdata Size: 1KB - Virtual size: 3KB

BSS Size: 2KB - Virtual size: 16KB

.rsrc Size: 1024B - Virtual size: 768B

.reloc Size: 1024B - Virtual size: 954B

.text
Size: 4KB - Virtual size: 80KB

.data
Size: 23KB - Virtual size: 33KB

.edata
Size: 512B - Virtual size: 141B

.rdata
Size: 1KB - Virtual size: 3KB

BSS
Size: 2KB - Virtual size: 16KB

.rsrc
Size: 1024B - Virtual size: 768B

.reloc
Size: 1024B - Virtual size: 954B