159180615b7e154465fc9916fc9bda1e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

159180615b7e154465fc9916fc9bda1e_JaffaCakes118
Size

300KB
MD5

159180615b7e154465fc9916fc9bda1e
SHA1

ac48ba389180fd2ca5bacddcb069ad29c94b0788
SHA256

92cd5faf887a32d44ea5c819c7c4df985344efd535dea11d5b295cc41a51e511
SHA512

3c5fe9aa807c952d8a8226100bfc2fdbd7671872a808b3ab3738923ad3b0c7c7a6a235f43db24e0e2ba4405141a75fda31cf87bc63e63908d0dacd28d073196a
SSDEEP

6144:CLMhHA+gJaJUn86taUfuYdxmefIsx0aPZTqEgi9Ht:CLMV5BzUfHdxr9WaBuED

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
159180615b7e154465fc9916fc9bda1e_JaffaCakes118

Files

159180615b7e154465fc9916fc9bda1e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c496b823d323ba611f6784629e09b260

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VARIANT_UserFree

version

VerLanguageNameA

user32

DdeGetLastError
CreateIconFromResource

kernel32

GetLargestConsoleWindowSize
Process32First
Thread32First
GetPrivateProfileStructW
FlushViewOfFile
CreatePipe
GetFileTime
FindFirstFileA
GetACP
GetConsoleScreenBufferInfo
GetDateFormatA
FileTimeToDosDateTime
GetTempPathA
GetUserDefaultLCID
GetDefaultCommConfigA
GetTickCount
GetLogicalDrives
GetLargestConsoleWindowSize
Process32First
Thread32First
GetPrivateProfileStructW
FlushViewOfFile
CreatePipe
GetFileTime
FindFirstFileA
GetACP
GetConsoleScreenBufferInfo
GetDateFormatA
FileTimeToDosDateTime
GetTempPathA
GetUserDefaultLCID
GetDefaultCommConfigA
GetTickCount
GetLogicalDrives

comctl32

InitCommonControlsEx
ord8
ImageList_Merge
ImageList_SetDragCursorImage
ImageList_DrawEx
ImageList_LoadImageA
ImageList_SetBkColor
ImageList_Write

msvcrt

_mbsspnp

gdi32

GetCharacterPlacementA
CreateDCA
SetMetaFileBitsEx
CreatePolyPolygonRgn

advapi32

GetTokenInformation
SetSecurityDescriptorOwner
ImpersonateLoggedOnUser
SetSecurityDescriptorGroup
GetTrusteeTypeA
NotifyBootConfigStatus
SetTokenInformation
RevertToSelf

rasapi32

RasEnumDevicesA

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c496b823d323ba611f6784629e09b260

Headers

File Characteristics

Imports

oleaut32

version

user32

kernel32

comctl32

msvcrt

gdi32

advapi32

rasapi32

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 2.5MB

.rsrc Size: 232KB - Virtual size: 231KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 2.5MB

.rsrc
Size: 232KB - Virtual size: 231KB