2a80e96719831e1ba7dd1592934011d5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2a80e96719831e1ba7dd1592934011d5_JaffaCakes118
Size

43KB
MD5

2a80e96719831e1ba7dd1592934011d5
SHA1

79477ad0a65d22ebbeb29586e1d075d38b34352d
SHA256

ed7b95b2f01ee6d65988945a99ce8b4ee499fb1e9ef4108d6dcf2dd3f323425b
SHA512

887cc456b73322f3e2382374fc75be288d7a035fb7181828c783e3598b87c3d3c32d42fa2171ec4460ea106f141e3665502bae87ee5f606647f779176038fbbf
SSDEEP

768:1EuAxpFJU5zYuq1dOvX+6/yK9z/HF3VmNc2qYzAocbSr/rjUzMKPA:ezxD25vqK9z93Vm+ZdocbI8MKPA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a80e96719831e1ba7dd1592934011d5_JaffaCakes118

Files

2a80e96719831e1ba7dd1592934011d5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

6fd3a024d11524ffa1c57c25a3c3e4dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHDeleteKeyA
SHEnumKeyExA
SHCopyKeyA
SHDeleteEmptyKeyA
SHDeleteEmptyKeyW
HashData

kernel32

GetFileAttributesW
GetFileAttributesA
GetWindowsDirectoryA
Beep
CloseHandle
CompareStringA
CreateFileMappingA
CreateNamedPipeA
DeleteAtom
DeleteFileA
DeviceIoControl
GetConsoleCP
GetExitCodeThread
GetModuleHandleA
GetNamedPipeInfo
GetProcessHeap
GetCurrentProcessId
GetProcessVersion
GetStdHandle
GetCurrentThreadId
GetThreadLocale
GetUserDefaultLCID
GlobalAlloc
IsSystemResumeAutomatic
IsValidLocale
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetFilePointer
GetDriveTypeW
GetComputerNameA
GetBinaryTypeA
GetFileType
CancelIo
lstrcmpA
lstrlenW
lstrlenA
SetCurrentDirectoryA
FlushViewOfFile
GetStartupInfoA

ole32

OleRun

user32

ReleaseDC

advapi32

GetUserNameW
RegLoadKeyA

msvcrt

free
toupper
malloc

version

GetFileVersionInfoSizeA

winmm

timeGetDevCaps
CloseDriver
OpenDriver
GetDriverModuleHandle

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

idata
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 684B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fd3a024d11524ffa1c57c25a3c3e4dc

Headers

File Characteristics

Imports

shlwapi

kernel32

ole32

user32

advapi32

msvcrt

version

winmm

Sections

.text Size: 21KB - Virtual size: 21KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 16KB

idata Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 768B

.reloc Size: 1024B - Virtual size: 684B

.text
Size: 21KB - Virtual size: 21KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 16KB

idata
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 768B

.reloc
Size: 1024B - Virtual size: 684B