24ea6dbcf39f6f8bcc8aeccc7749e6b6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

24ea6dbcf39f6f8bcc8aeccc7749e6b6_JaffaCakes118
Size

254KB
MD5

24ea6dbcf39f6f8bcc8aeccc7749e6b6
SHA1

b4a18db871b3d52abad718596e57ed4df6b3c4f6
SHA256

f64c13e801b941b6d32b5af4fceb4c33b6205f989e8987ffe2eb05999422f509
SHA512

e3f0208732a611754e62cf6c4fbbe5efb55b5cd8c498534a0f7c3cd55e1cd5e9e51fd9222d02a25d7e4296b1d7d329c0ef13fb18895568f3f760e546efc3fc7d
SSDEEP

6144:V58BryY7fJ9VsvYWOQ9mI8aLZu+OjIxAwXj8Z/lY1qAEV:V58Ie9ObOQQ9aLg+OEm+8Nlsx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24ea6dbcf39f6f8bcc8aeccc7749e6b6_JaffaCakes118

Files

24ea6dbcf39f6f8bcc8aeccc7749e6b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ef22e7a9ad726759faed388f79e237e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
GlobalFree
WaitForSingleObject
GetStringTypeExA
GetFileSize
FindNextFileW
GetModuleHandleW
FormatMessageW
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
CreateThread
LocalFree
FindFirstFileW
CreateDirectoryA
IsDebuggerPresent
FindNextFileA
FreeLibrary
FindClose
FindFirstFileA
GetSystemDirectoryA
CreateMutexW
GetTempPathW
CloseHandle
LCMapStringA
GetTempFileNameW
CreateDirectoryW
GetCurrentThreadId
CreateFileW
ReleaseMutex
GetCurrentDirectoryA
UnhandledExceptionFilter
lstrlenW
VirtualAlloc

user32

LoadStringA

ws2_32

inet_addr
select
htonl
closesocket
socket
listen
WSAGetLastError
WSACleanup
ntohs
connect
recv
accept
send
inet_ntoa
htons
getsockopt
WSASetLastError
getservbyport
getservbyname
gethostbyname
gethostbyaddr
bind
__WSAFDIsSet
ioctlsocket
getsockname
WSAStartup

wininet

DetectAutoProxyUrl

advapi32

GetUserNameA
RegCloseKey
RegOpenKeyExA
OpenThreadToken
GetTokenInformation
RegQueryValueExA

ole32

CoTaskMemFree

iassvcs

IASUninitialize
IASVariantChangeType
IASGetLocalDictionary
IASAdler32

iassam

DllUnregisterServer
IASParmsQueryUserProperty
DllCanUnloadNow

Sections

.ZOVfnC
Size: 3KB - Virtual size: 38KB

IMAGE_SCN_MEM_READ

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.JKRbqAc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HkqHH
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.QEYl
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gLOyEi
Size: 512B - Virtual size: 226B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fzUTokc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MniMk
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.moghV
Size: 512B - Virtual size: 249B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nMIHej
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.RqxsG
Size: 512B - Virtual size: 419B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef22e7a9ad726759faed388f79e237e0

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

wininet

advapi32

ole32

iassvcs

iassam

Sections

.ZOVfnC Size: 3KB - Virtual size: 38KB

.text Size: 17KB - Virtual size: 17KB

.JKRbqAc Size: 1024B - Virtual size: 860B

.HkqHH Size: 2KB - Virtual size: 2KB

.QEYl Size: 2KB - Virtual size: 2KB

.gLOyEi Size: 512B - Virtual size: 226B

.data Size: 7KB - Virtual size: 190KB

.rdata Size: 207KB - Virtual size: 207KB

.fzUTokc Size: 1KB - Virtual size: 1KB

.MniMk Size: 2KB - Virtual size: 1KB

.moghV Size: 512B - Virtual size: 249B

.rsrc Size: 4KB - Virtual size: 4KB

.nMIHej Size: 2KB - Virtual size: 2KB

.RqxsG Size: 512B - Virtual size: 419B

.ZOVfnC
Size: 3KB - Virtual size: 38KB

.text
Size: 17KB - Virtual size: 17KB

.JKRbqAc
Size: 1024B - Virtual size: 860B

.HkqHH
Size: 2KB - Virtual size: 2KB

.QEYl
Size: 2KB - Virtual size: 2KB

.gLOyEi
Size: 512B - Virtual size: 226B

.data
Size: 7KB - Virtual size: 190KB

.rdata
Size: 207KB - Virtual size: 207KB

.fzUTokc
Size: 1KB - Virtual size: 1KB

.MniMk
Size: 2KB - Virtual size: 1KB

.moghV
Size: 512B - Virtual size: 249B

.rsrc
Size: 4KB - Virtual size: 4KB

.nMIHej
Size: 2KB - Virtual size: 2KB

.RqxsG
Size: 512B - Virtual size: 419B