0e23c240bde6ba59bcea4df6ed2e0b75_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0e23c240bde6ba59bcea4df6ed2e0b75_JaffaCakes118
Size

829KB
MD5

0e23c240bde6ba59bcea4df6ed2e0b75
SHA1

87f55344332c71cffcc922694eaaa8befbe844d1
SHA256

5a573cd09d57e5b2fc1aa570c033b4e6a412a73866a16cc6c7abf606a1981ad6
SHA512

f243f3c095101650a3bece790b7239bedc84e0b6e5eac865a8b01987a14e0c1b4deb43bea8431408fcfe80f48fff847118f27f1c16f0150404dc070944f3c022
SSDEEP

12288:gjG9In8/10SKGSzuXCXzZgvH4goE1q/hqpAylycQXq8MpGpsP0Aa54vCemh:gjv8/10SHS1S/frg/hqpAyk9XX9hPf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e23c240bde6ba59bcea4df6ed2e0b75_JaffaCakes118

Files

0e23c240bde6ba59bcea4df6ed2e0b75_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f5446917a85852127e896744e06a9c44

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetDragImage
ImageList_Replace
GetMUILanguage
UninitializeFlatSB
InitCommonControls
ImageList_GetImageRect
FlatSB_SetScrollProp
InitCommonControlsEx
FlatSB_SetScrollPos
ImageList_SetIconSize
ImageList_GetImageCount
MenuHelp
CreateStatusWindowA
ImageList_GetIconSize
ImageList_Draw
ImageList_DragEnter

user32

EndDialog
MessageBoxA

dhcpcsvc

McastRenewAddress
DhcpDeRegisterOptions
DhcpRemoveDNSRegistrations
DhcpRegisterOptions
DhcpLeaseIpAddress
DhcpPersistentRequestParams
DhcpAcquireParameters
DhcpRequestParams
DhcpAcquireParametersByBroadcast
DhcpReleaseParameters
McastGenUID
DhcpStaticRefreshParams
DhcpFallbackRefreshParams
McastReleaseAddress
DhcpReleaseIpAddressLeaseEx
DhcpEnumClasses
McastApiCleanup
McastApiStartup

msvcrt

__p__fileinfo
ispunct
_cscanf
exit
_ui64toa
isupper
__lc_codepage
_beginthreadex
_daylight
_isatty
_aligned_offset_realloc
_umask
__crtLCMapStringA
_execlp
__p__commode
__set_app_type
_timezone
__p__daylight
_setmbcp
__getmainargs
_aligned_realloc

oleaut32

VarDateFromUI4
VarDateFromCy
VarI2FromStr
VarDecFromDisp
VarUI4FromDate
SetVarConversionLocaleSetting
CreateDispTypeInfo
OACreateTypeLib2
VarCyFromR8
VarDecAbs
ClearCustData
DispGetParam
SysStringByteLen
DispGetIDsOfNames
LoadRegTypeLib
VarR4FromI2
VarCyFromI1
LPSAFEARRAY_UserFree
VarCyMulI8
VarDecFromStr
VarBoolFromUI4
VarAbs
VarI1FromUI1
VarFormatPercent
VarI2FromDec
VarI4FromStr
VarI4FromR8
VarBstrFromI1
VarUI8FromUI4
VarI1FromDate

kernel32

GetLocaleInfoA
WaitForSingleObject
LoadLibraryW
LZCloseFile
GetThreadLocale
GetModuleHandleW
RtlCaptureStackBackTrace
GetTapeStatus
HeapReAlloc
lstrcmpiW
ActivateActCtx
OpenJobObjectW
FoldStringW
IsBadHugeWritePtr
SetProcessPriorityBoost
OpenMutexW
GetStartupInfoA
WaitForSingleObjectEx
MoveFileWithProgressW
RemoveDirectoryW
ReadConsoleInputW
InitializeCriticalSection
GetCurrentDirectoryW
GetCurrentProcessId
MapViewOfFile
SetCommMask
GetCurrentThread
LZStart
ReadConsoleOutputCharacterA
SetConsoleIcon
GetSystemDefaultLCID

unimdmat

UmHangupModem
UmLogStringA
UmInitializeModemDriver
UmDeinitializeModemDriver
UmMonitorModem
UmInitModem
UmOpenModem
UmAnswerModem
UmIssueCommand
UmDuplicateDeviceHandle
UmGenerateDigit
UmSetSpeakerPhoneState
UmDialModem
UmGetDiagnostics
UmLogDiagnostics
UmSetPassthroughMode
UmWaveAction
UmAbortCurrentModemCommand
UmCloseModem

shell32

SHGetMalloc

wldap32

ldap_modrdnA
ldap_rename_extA
ldap_modify_extA
ldap_delete_extW
ldap_search_init_page
ldap_modify_ext
ldap_search_extA
ldap_modrdn2W

Sections

.text
Size: 362KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 157KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5446917a85852127e896744e06a9c44

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

user32

dhcpcsvc

msvcrt

oleaut32

kernel32

unimdmat

shell32

wldap32

Sections

.text Size: 362KB - Virtual size: 361KB

.rdata Size: 115KB - Virtual size: 114KB

.data Size: 157KB - Virtual size: 1.6MB

.rsrc Size: 193KB - Virtual size: 192KB

.reloc Size: 1024B - Virtual size: 872B

.text
Size: 362KB - Virtual size: 361KB

.rdata
Size: 115KB - Virtual size: 114KB

.data
Size: 157KB - Virtual size: 1.6MB

.rsrc
Size: 193KB - Virtual size: 192KB

.reloc
Size: 1024B - Virtual size: 872B