d48ae9d2dd1d2fafb76646b2d8fa24bd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d48ae9d2dd1d2fafb76646b2d8fa24bd_JaffaCakes118
Size

96KB
MD5

d48ae9d2dd1d2fafb76646b2d8fa24bd
SHA1

19c4b867ea224f62542964e3bd70242259979d7d
SHA256

a06e70707593cd36b22ab20ce84ab50f678bd2b3b2c35ff2fbf8551baa619971
SHA512

ca837af00b81ec92b043d8bf5086583242b1c566488186d38a579174189811bb47a0ab90b424f925e1e229ed06987d7b5be940d4e91aedcd6d5da728c4f80c8f
SSDEEP

3072:h4kyOu1UKJ92nsgv1i2Li769+42iTPwmuqrsY:ak+rJ92nTrG79hXqrsY

Score

1^/10

Malware Config

Signatures

Files

d48ae9d2dd1d2fafb76646b2d8fa24bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cf0df20f5cf1855231c0092b45b7da20

Code Sign

bb:e4:88:53:8f:63:83:a3:32:50:09:5d:20:2c:3a:8c:42:00:e7:3b
Signer

Actual PE Digest

bb:e4:88:53:8f:63:83:a3:32:50:09:5d:20:2c:3a:8c:42:00:e7:3b

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrChrA
StrStrA
StrToIntA

user32

PostThreadMessageA
wsprintfA

advapi32

DeleteService
OpenSCManagerA
OpenServiceA
CloseServiceHandle
QueryServiceStatus
ControlService

ole32

CoCreateGuid

msvcrt

__p__fmode
__set_app_type
_except_handler3
_controlfp
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_acmdln
exit
_XcptFilter
_exit
__CxxFrameHandler
memcpy
time
srand
rand
memset
??2@YAPAXI@Z
??3@YAXPAX@Z
__getmainargs

kernel32.dll

SetFilePointer
GetModuleFileNameA
DeleteFileA
GetModuleHandleA
GetStartupInfoA
ReadFile
CreateMutexA
GetLastError
GetFileAttributesExA
ReleaseMutex
lstrcpyA
lstrlenA
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
CreateFileA
WriteFile
GetSystemDirectoryA
lstrcatA
WaitForSingleObject
CloseHandle
GetFileTime
SetFileTime

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xiao
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf0df20f5cf1855231c0092b45b7da20

Code Sign

bb:e4:88:53:8f:63:83:a3:32:50:09:5d:20:2c:3a:8c:42:00:e7:3bSigner

Headers

File Characteristics

Imports

shlwapi

user32

advapi32

ole32

msvcrt

kernel32.dll

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 4KB

xiao Size: 1KB - Virtual size: 1KB

.rsrc Size: 11KB - Virtual size: 12KB

bb:e4:88:53:8f:63:83:a3:32:50:09:5d:20:2c:3a:8c:42:00:e7:3b
Signer

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

xiao
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 11KB - Virtual size: 12KB