fd7ba63ff8f34a4f8c7cdc10e2e9b23f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fd7ba63ff8f34a4f8c7cdc10e2e9b23f_JaffaCakes118
Size

130KB
MD5

fd7ba63ff8f34a4f8c7cdc10e2e9b23f
SHA1

0a215e4d25217d57ff610c8f0ad6d798e92e0f31
SHA256

7c5b78f3ec6085fc6ed5a180fd15087dbc26d3c783157dddb193108268786d68
SHA512

e40bf7d75bab34303e56db7337a9747c49274666669375258942625b327af56d840d53cc11f22535755b4773444e80d6eb28cd7f31ead846dad93c021a456114
SSDEEP

3072:ize695VDSagu1+6OBvNVZehlxBiytF0yK9LTxD3BUiowB:iKKPlbmZehlxBTo9LR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd7ba63ff8f34a4f8c7cdc10e2e9b23f_JaffaCakes118

Files

fd7ba63ff8f34a4f8c7cdc10e2e9b23f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d40a1b2b86218794407acea655586388

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlAppendStringToString
NtCreateKey
RtlCreateQueryDebugBuffer
NtProtectVirtualMemory
ZwSetInformationThread
NtQuerySection
NtSaveMergedKeys
DbgUiSetThreadDebugObject
RtlAddAccessAllowedObjectAce
NtCreateKeyedEvent
RtlSplay
RtlDumpResource
__isascii
NtQueryInformationProcess
RtlQueryInformationActiveActivationContext
RtlConvertToAutoInheritSecurityObject
RtlRemoteCall
ZwCreateMailslotFile
ZwAdjustGroupsToken
ZwSetHighEventPair
ZwWaitLowEventPair
RtlGenerate8dot3Name
LdrShutdownProcess

winmm

mmTaskBlock
midiOutGetDevCapsA
midiInOpen
sndPlaySoundA
NotifyCallbackData
midiOutUnprepareHeader
midiInGetErrorTextA
timeBeginPeriod
mciExecute
joyReleaseCapture
midiInMessage
midiOutMessage
joyGetPosEx
mixerMessage
midiStreamOut
waveOutPrepareHeader
timeGetSystemTime
waveOutGetPlaybackRate
timeEndPeriod

user32

SetDlgItemTextA
SystemParametersInfoW
RemovePropA
SetSysColorsTemp
DefWindowProcA
UserLpkPSMTextOut
GetForegroundWindow
SetThreadDesktop
GetAppCompatFlags2
CharNextExA
CreateIconFromResourceEx
EnumDisplayMonitors
ExcludeUpdateRgn
CreateDialogParamA
ReplyMessage
PostQuitMessage
LoadMenuIndirectW
RegisterClassA
ScrollWindowEx
ScreenToClient

kernel32

TryEnterCriticalSection
SetConsoleNumberOfCommandsA
TermsrvAppInstallMode
FormatMessageA
ReadConsoleInputA
ConvertDefaultLocale
DebugBreak
SetCriticalSectionSpinCount
GetStartupInfoW
GetWindowsDirectoryA
SetCurrentDirectoryA
SetConsoleTitleW
RemoveDirectoryA
EnumTimeFormatsA
GetConsoleAliasExesLengthW
OutputDebugStringA
SetHandleCount
RemoveVectoredExceptionHandler
SetVolumeMountPointA
LoadLibraryA
MoveFileWithProgressW
VirtualAlloc

opengl32

glColor3iv
glVertex3dv
glEdgeFlagv
glLightiv
glPopAttrib
glRasterPos3sv
glVertex4s
glColor3usv
glMaterialfv
wglGetPixelFormat
glRasterPos2iv
glListBase
glTexGeni
glVertex4f
glTexParameterf
glColor4fv
glEvalCoord1d
glClipPlane
glColor4f
glLineStipple
glGetTexLevelParameterfv
glMatrixMode
glLightModelf
glRasterPos3fv
glPolygonOffset

msvcrt

??0__non_rtti_object@@QAE@ABV0@@Z
_mbscspn
gmtime
_stati64
_logb
_wfsopen
_statusfp
tanh
_wmakepath
__winitenv
_unlink
asctime
wcsxfrm
_mbsnbcoll
__p__wpgmptr
_strtime
?before@type_info@@QBEHABV1@@Z
_mbsnbcmp
__p___mb_cur_max
_safe_fprem
_adjust_fdiv

Sections

.text
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.xxxdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iiidata
Size: 52KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d40a1b2b86218794407acea655586388

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

winmm

user32

kernel32

opengl32

msvcrt

Sections

.text Size: 71KB - Virtual size: 71KB

.xxxdata Size: 4KB - Virtual size: 3KB

.iiidata Size: 52KB - Virtual size: 191KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 292B

.text
Size: 71KB - Virtual size: 71KB

.xxxdata
Size: 4KB - Virtual size: 3KB

.iiidata
Size: 52KB - Virtual size: 191KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 292B