d2f77b01552c25297d684205bc065bd8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2f77b01552c25297d684205bc065bd8_JaffaCakes118
Size

41KB
MD5

d2f77b01552c25297d684205bc065bd8
SHA1

9091080f51fa4bf470b95e916729b693791e5aa5
SHA256

90cbf31c30995286a1996c60536f8a20d1bddc09d432d73c0b6cd7ed0e69ea6d
SHA512

9bd4788b1000f52d122ae2d888fa00fa82981a4555cbb11bd689d60673ce6f08ac10a0e4c9e997fa771d4d031f2cb799bde9caaf5f9a6b411427b0ebea2d1f7b
SSDEEP

768:x3iVIyM919RwS0uOy8aH3rgocWCd5uuPieQfgQPIo1:xQIyM91sS0uhZEoXCd0uPJugk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2f77b01552c25297d684205bc065bd8_JaffaCakes118

Files

d2f77b01552c25297d684205bc065bd8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

948509720f15b5800420737826546537

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasGetConnectStatusA
RasHangUpA
RasGetErrorStringA
RasDialA
RasEnumConnectionsA
RasGetEntryPropertiesA
RasSetEntryPropertiesA
RasValidateEntryNameA
RasEnumDevicesA

kernel32

lstrcpyA
GetSystemDirectoryA
lstrcmpA
CreateThread
CreateProcessA
Sleep
TerminateThread
CloseHandle
SetCommState
GetCommState
GetLastError
CreateFileA
GetTickCount
ExitThread
GlobalFree
GlobalAlloc
WaitForSingleObject
MultiByteToWideChar
GetCommandLineA
FileTimeToSystemTime
lstrcatA
UnmapViewOfFile
lstrlenA
WriteFile
MapViewOfFile
CreateFileMappingA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
GetSystemTime
LoadLibraryA
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetProcAddress
GetFileTime
HeapReAlloc
VirtualAlloc
HeapFree
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetVersion
HeapAlloc
GetModuleHandleA
GetStartupInfoA

user32

MessageBoxA
wsprintfA
EndDialog
GetDlgItem
BeginPaint
EndPaint
MoveWindow
LoadBitmapA
LoadIconA
SendMessageA
DialogBoxParamA
ShowWindow

gdi32

CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetObjectA
DeleteObject

advapi32

RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

ole32

CoInitialize
CoCreateInstance
CoUninitialize

wininet

InternetOpenA
InternetConnectA
FtpPutFileA

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

948509720f15b5800420737826546537

Headers

File Characteristics

Imports

rasapi32

kernel32

user32

gdi32

advapi32

ole32

wininet

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 16KB - Virtual size: 16KB