fa08746b8e8871a7f13e44dc58503ef9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fa08746b8e8871a7f13e44dc58503ef9_JaffaCakes118
Size

52KB
MD5

fa08746b8e8871a7f13e44dc58503ef9
SHA1

c922d47f94fb93735d4a6e39bf68904cd74223fa
SHA256

1b7330be21ce5d34baf0fa145f2137f25d51a967599ec30768110de37ab5dcbb
SHA512

1cdc2c92454e3d1ba13b724aeaaec7572f3ae84ab6659b777b1e926955a748adaf48ff299482b3aaf6b03154931c8ab10171c6206fa607750ae311e445ac5f3c
SSDEEP

1536:wOMZpEUEKkrEEZ6OgdWy03KxsEBy/tsuJq:wOMgUEKWES+OKiEB4q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa08746b8e8871a7f13e44dc58503ef9_JaffaCakes118

Files

fa08746b8e8871a7f13e44dc58503ef9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCanonicalizeA

kernel32

CreateHardLinkW
GetFileTime
Beep
CopyFileW
CopyFileExW
CopyFileExA
CopyFileA
ConvertThreadToFiber
ConvertDefaultLocale
ContinueDebugEvent
ConnectNamedPipe
CompareStringW
CompareStringA
CompareFileTime
CommConfigDialogW
CreateMailslotW
CreateMailslotA
CreateJobObjectW
CreateJobObjectA
CreateIoCompletionPort
CreateHardLinkA
CreateFileW
CreateFileMappingW
CreateFileMappingA
CreateFileA
CreateFiberEx
CreateFiber
CreateEventW
CreateEventA
CreateDirectoryW
CreateDirectoryExW
CreateDirectoryExA
CreateDirectoryA
CreateConsoleScreenBuffer
HeapAlloc
GetProcessHeap
HeapFree

user32

CharPrevA
ChildWindowFromPointEx
ChildWindowFromPoint
CheckRadioButton
ChangeClipboardChain
ChangeDisplaySettingsA
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
ChangeDisplaySettingsW
ChangeMenuA
ChangeMenuW
CharLowerA
CharLowerBuffA
CharLowerBuffW
CharLowerW
CharNextExA
CharNextW
CharNextA
CharPrevExA
CharPrevW
CharToOemA
CharToOemBuffA
CharToOemBuffW
CharToOemW
CharUpperA
CharUpperBuffA
CharUpperBuffW
CharUpperW
CheckDlgButton
CheckMenuItem
CheckMenuRadioItem

msvcrt

memset

winmm

mmioInstallIOProcA

setupapi

SetupDiEnumDeviceInterfaces
CM_Open_Class_KeyA
CM_Register_Device_InterfaceW
CM_Register_Device_Interface_ExA
CM_Register_Device_Interface_ExW
CM_Remove_SubTree
CM_Remove_SubTree_Ex
CM_Request_Device_EjectA
CM_Request_Device_EjectW
CM_Request_Device_Eject_ExA
CM_Request_Device_Eject_ExW
CM_Request_Eject_PC
CM_Request_Eject_PC_Ex
CM_Set_HW_Prof_Ex
CM_Set_HW_Prof_FlagsA
CM_Set_HW_Prof_FlagsW
CM_Set_HW_Prof_Flags_ExA
CM_Set_HW_Prof_Flags_ExW
SetupDiClassGuidsFromNameA
SetupDiClassGuidsFromNameExA
SetupDiEnumDriverInfoA
SetupDiClassGuidsFromNameExW
SetupDiClassGuidsFromNameW
SetupDiClassNameFromGuidA
SetupDiClassNameFromGuidExA
SetupDiClassNameFromGuidExW
SetupDiClassNameFromGuidW
SetupDiCreateDevRegKeyA
SetupDiCreateDevRegKeyW
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoListExA
SetupDiCreateDeviceInfoListExW
SetupDiCreateDeviceInfoW
SetupDiCreateDeviceInterfaceA
SetupDiDestroyDriverInfoList
SetupDiDrawMiniIcon
SetupDiGetClassDescriptionA
SetupDiGetClassBitmapIndex
SetupDiEnumDriverInfoW
SetupDiEnumDeviceInfo

Exports

Exports

jgdnymsv

Sections

.code
Size: 44KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

msvcrt

winmm

setupapi

Exports

Exports

Sections

.code Size: 44KB - Virtual size: 134KB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 512B - Virtual size: 1B

.rdata Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 760B

.reloc Size: 1024B - Virtual size: 828B

.code
Size: 44KB - Virtual size: 134KB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 512B - Virtual size: 1B

.rdata
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 760B

.reloc
Size: 1024B - Virtual size: 828B