fcaee7b9131efc6be7b7f281c2deebce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fcaee7b9131efc6be7b7f281c2deebce_JaffaCakes118
Size

93KB
MD5

fcaee7b9131efc6be7b7f281c2deebce
SHA1

4d018eaa59502a5e873b7fefa208d3c505304441
SHA256

278c7bbe732a114819c983c8593a36a226c5bc09fa10e5eee299a092f8ab5957
SHA512

2e56a3eaeb5b6aa5d67761f3151800d7df7281d86fd3035fa89c1faff592537dbd292f243bdf325619176dea8a6c8fd50cb7494c6be3b37229637ce9e5cf0bf4
SSDEEP

1536:lGa0iA184W5bW0CYqaBkHmEquOFoYm5Icfd2T1b6n7MFw9eD8xXmy+936uObGUs5:lLZAkbdCba7LuYiI4ybI7MFwzxXJ+93T

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fcaee7b9131efc6be7b7f281c2deebce_JaffaCakes118

Files

fcaee7b9131efc6be7b7f281c2deebce_JaffaCakes118
.exe windows:4 windows x86 arch:x86

73ed8b504f5933b969e08b986631f8ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUserGeoID
GetDiskFreeSpaceA
FindFirstFileExA
GetSystemWindowsDirectoryA
Process32First
TransmitCommChar
SetConsoleMenuClose
GetUserDefaultLCID
ExpungeConsoleCommandHistoryA
GetProfileIntA
SetVolumeMountPointA
GetComputerNameA
EnumSystemCodePagesA
GetThreadIOPendingFlag
GetCommandLineA
GetConsoleOutputCP
MultiByteToWideChar
EnumSystemLocalesA
CreateFileMappingA
FindAtomA
WriteProcessMemory
SetFileAttributesA
WaitNamedPipeA
CreateMutexA
GetEnvironmentVariableA
SetFileApisToANSI
VirtualAlloc
RegisterWaitForSingleObject
OpenWaitableTimerA
GetFileAttributesExA
SetCommMask
GetProcessHeap
IsSystemResumeAutomatic
FindNextFileA
GetCommModemStatus
GetVolumePathNameA
BuildCommDCBAndTimeoutsA
SetWaitableTimer
QueryPerformanceFrequency
SetFileShortNameA
SetProcessPriorityBoost
GetCurrentThreadId
FreeConsole
LocalReAlloc
FindNextVolumeMountPointA
GetConsoleInputExeNameA
GetDefaultCommConfigA
OpenJobObjectA
GetModuleHandleA
ResetWriteWatch
SetConsoleDisplayMode
ResumeThread
VerifyVersionInfoA
GetVersionExA
GetConsoleCP
GetLogicalDriveStringsA
OpenProcess
HeapCompact
OpenEventA
GetSystemTimes
GetFileSize
MulDiv
SetConsoleCursor
GetExitCodeProcess
SetThreadIdealProcessor
GetCurrencyFormatA
CancelWaitableTimer
GetNumberFormatA
OpenSemaphoreA
LZDone
OpenThread
GetCurrentProcessId
GetFullPathNameA
GetStringTypeExA
SetInformationJobObject
GetConsoleTitleA
lstrlenA
DisableThreadLibraryCalls
FillConsoleOutputCharacterA
GetSystemDefaultLCID
GetModuleFileNameA
SetCommConfig
ChangeTimerQueueTimer
CreateDirectoryExA
GetFileTime
VirtualQueryEx
IsProcessorFeaturePresent
GetVolumeNameForVolumeMountPointA
GetWindowsDirectoryA
DeleteTimerQueue
GetCurrentConsoleFont
GetFileAttributesA
SetEnvironmentVariableA
GetSystemTime
RemoveDirectoryA
GetFileAttributesExA
GetNamedPipeInfo
FindFirstVolumeMountPointW
UpdateResourceA
UnlockFileEx
DisconnectNamedPipe
SetProcessShutdownParameters
CallNamedPipeA
GetSystemTimes
GetCurrentThreadId

d3d8

ValidatePixelShader
ValidateVertexShader

dhcpsapi

DhcpDeleteServer

Exports

Exports

Lpttelybag
SetRpfwblue

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

73ed8b504f5933b969e08b986631f8ff

Headers

File Characteristics

Imports

kernel32

d3d8

dhcpsapi

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 36KB - Virtual size: 142KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 112B

.rsrc Size: 29KB - Virtual size: 30KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 36KB - Virtual size: 142KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 112B

.rsrc
Size: 29KB - Virtual size: 30KB