dfa7905f07c261f55893d76ed8f36e72_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dfa7905f07c261f55893d76ed8f36e72_JaffaCakes118
Size

20KB
MD5

dfa7905f07c261f55893d76ed8f36e72
SHA1

25f0033f5ea7517914cd81c8f72f0cde7ab2cb34
SHA256

bb08587a859a031ad107a205ca4ce1a5e6947ca00db501615a3e8c62d061c8ff
SHA512

d6d5e5a0e33763e9a7e2e54bab879551f9c83fa66d8686f827230d0577e596bd3ed97c4bcc39a533491373a943abc5e85e6c8cf604bdb94e255c80d9558d1fa4
SSDEEP

384:faITre86Tlv2NevgGmMbqKEfyQVSZLjPbfc+WlFMbAKA:CIONwcvgg2vyQE9fEMpA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfa7905f07c261f55893d76ed8f36e72_JaffaCakes118

Files

dfa7905f07c261f55893d76ed8f36e72_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b0e2c1071ded378cf9607f918b8c1075

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

??4streambuf@@QAEAAV0@ABV0@@Z
?good@ios@@QBEHXZ
_ismbbgraph
_rmtmp
_CIpow
??_Distream_withassign@@QAEXXZ
__lconv_init
_ismbbpunct
??_7ifstream@@6B@
??0istream@@IAE@XZ
??_Gstdiostream@@UAEPAXI@Z
??4Iostream_init@@QAEAAV0@ABV0@@Z
wcstok
_ismbcpunct
??_Eifstream@@UAEPAXI@Z
_wspawnv
?name@type_info@@QBEPBDXZ
abs
_setmaxstdio
_getws
_fpieee_flt
?precision@ios@@QAEHH@Z
_yn
??6ostream@@QAEAAV0@J@Z
_wgetcwd
?delbuf@ios@@QAEXH@Z
??6ostream@@QAEAAV0@N@Z
_acmdln
??_7stdiobuf@@6B@
_mbsnbicmp

kernel32

GetCurrentThreadId
AddVectoredExceptionHandler
GetCurrentProcessId
QueryPerformanceCounter
GetProfileIntA
SetComputerNameExW
SetVolumeLabelA
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
Process32FirstW
GetConsoleCommandHistoryLengthW
VirtualAlloc
GetEnvironmentStringsA
CreateEventW
_llseek
GetCommState
SignalObjectAndWait
FillConsoleOutputAttribute
GetTickCount
SetFileShortNameA

opengl32

wglGetCurrentDC
glClearIndex
wglDescribePixelFormat
glMultMatrixf
glTexCoord3sv
glGetTexParameteriv
glCopyTexImage1D
glVertex3fv
glLoadIdentity
glTexGenf
glColor4ubv
glPolygonOffset
glInterleavedArrays
wglSwapBuffers

untfs

?Initialize@NTFS_EXTENT_LIST@@QAEEVBIG_INT@@0@Z
??0NTFS_MFT_FILE@@QAE@XZ
??0NTFS_SA@@QAE@XZ
??0NTFS_ATTRIBUTE_LIST@@QAE@XZ
??1NTFS_UPCASE_FILE@@UAE@XZ
?QueryFileSizes@NTFS_FILE_RECORD_SEGMENT@@QAEEPAVBIG_INT@@0PAE@Z
??0NTFS_ATTRIBUTE_DEFINITION_TABLE@@QAE@XZ
??0NTFS_REFLECTED_MASTER_FILE_TABLE@@QAE@XZ
?QueryAttributeList@NTFS_FRS_STRUCTURE@@QAEEPAVNTFS_ATTRIBUTE_LIST@@@Z
??0NTFS_UPCASE_FILE@@QAE@XZ
?Initialize@NTFS_ATTRIBUTE@@QAEEPAVLOG_IO_DP_DRIVE@@KPBXKKPBVWSTRING@@G@Z
??0NTFS_BITMAP@@QAE@XZ
?QueryLcnFromVcn@NTFS_EXTENT_LIST@@QBEEVBIG_INT@@PAV2@1@Z
?MakeNonresident@NTFS_ATTRIBUTE@@UAEEPAVNTFS_BITMAP@@@Z
?Flush@NTFS_MFT_FILE@@QAEEXZ
?Initialize@NTFS_MFT_INFO@@QAEEXZ
??1NTFS_BITMAP_FILE@@UAE@XZ

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 618B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0e2c1071ded378cf9607f918b8c1075

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt40

kernel32

opengl32

untfs

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 1024B - Virtual size: 618B

.data Size: 512B - Virtual size: 3KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 1024B - Virtual size: 618B

.data
Size: 512B - Virtual size: 3KB

.rsrc
Size: 3KB - Virtual size: 2KB