3b39c4b479f96d696aa4cc32729c1b5b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3b39c4b479f96d696aa4cc32729c1b5b_JaffaCakes118
Size

325KB
MD5

3b39c4b479f96d696aa4cc32729c1b5b
SHA1

875819724c5c3102fb9802f14d47e03919fa6463
SHA256

07297b79dce665d67c713bf2905f4ca345bfb8f4e797e19b544ce01e2edcf6f2
SHA512

2de3def8794f1bd1d560298620158ebe3d685894d0291fbc924b97eb96e1582dc795f3dd959a4c481cecf45fb0346446d3d5fd1fd16d4a964346c2866b57a416
SSDEEP

6144:qd29rwyX+G5WgDYngob0nX4bjpwCdhAxIcojc8NQIn+/Nw+Sos5:T3DYBtb5Axic8NQI+/i+ls5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b39c4b479f96d696aa4cc32729c1b5b_JaffaCakes118

Files

3b39c4b479f96d696aa4cc32729c1b5b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2cf3634705ec738ede67257bead4fd6e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetEvent
SetPriorityClass
GetLogicalDriveStringsW
MultiByteToWideChar
GetDriveTypeW
GetVersionExA
SystemTimeToTzSpecificLocalTime
ReleaseMutex
CreateFileW
GetSystemDirectoryW
FileTimeToSystemTime
SetFileAttributesW
FindNextVolumeMountPointW
GetFileInformationByHandle
ExpandEnvironmentStringsW
VerSetConditionMask
VirtualAlloc
CloseHandle
FindFirstFileW
GetNumberFormatW
InitializeCriticalSection
FindNextFileW
FreeLibrary
GetFileAttributesW
GetComputerNameW
LeaveCriticalSection
VirtualFree
GetSystemTime
GetVolumePathNameW
LoadLibraryA
BackupSeek
FormatMessageW
WriteTapemark
CreateMutexW
SetLastError
GetExitCodeThread
GetTapeStatus
TerminateThread
GetPriorityClass
GetFileSize
GetCurrentThread
DeleteCriticalSection
CreateSemaphoreW
EnterCriticalSection
GetVolumeNameForVolumeMountPointW
GetStartupInfoW
LoadLibraryW
SetCurrentDirectoryW
FindFirstVolumeMountPointW
VerifyVersionInfoW
ReleaseSemaphore
GetCurrentDirectoryW
FindClose
GetEnvironmentVariableW
LocalAlloc
BackupWrite
LocalFree
SetErrorMode
WriteFile
GetCurrentThreadId
GetDiskFreeSpaceExW
CreateHardLinkW
ReadFile
BackupRead
QueryPerformanceCounter
CreateEventW

winmm

PlaySound
waveOutSetPitch
mciGetDeviceIDFromElementIDW
midiOutGetDevCapsA
waveOutGetNumDevs
auxSetVolume
midiOutClose
mciLoadCommandResource
midiInGetID
waveOutGetPlaybackRate
sndPlaySoundA
waveOutGetDevCapsA
mmioCreateChunk
mciGetDeviceIDA
midiInStart
waveInUnprepareHeader
joyGetDevCapsW
midiOutGetNumDevs
midiOutReset
waveOutUnprepareHeader
waveInGetErrorTextA
mixerGetLineInfoW
mmioStringToFOURCCA
mmioRenameW
timeEndPeriod
PlaySoundA
midiOutLongMsg
midiOutMessage
mmTaskSignal
mmioAdvance
midiOutGetID
DefDriverProc
joyReleaseCapture
midiStreamOut
mixerGetDevCapsW
midiInUnprepareHeader
midiStreamPause
mixerGetNumDevs
mmioOpenW
midiDisconnect
midiOutOpen
waveInOpen
mmioOpenA
mixerOpen
DriverCallback
waveOutOpen
waveInGetDevCapsA
mixerGetControlDetailsW
waveInGetID
waveInPrepareHeader
mci32Message
mixerMessage
mmTaskCreate
waveOutMessage
midiInClose
waveInGetPosition
midiInGetErrorTextW
joySetCapture
mciGetDriverData
mciGetCreatorTask
sndPlaySoundW
mmioRead
mixerGetControlDetailsA
waveOutSetVolume
tid32Message
mciGetDeviceIDW
mmioRenameA
mmioGetInfo
midiInGetNumDevs
mciSendStringW
mixerGetDevCapsA
mid32Message
waveOutRestart

odbc32

SQLForeignKeys
ODBCGetTryWaitValue
SQLGetStmtOption
SQLGetData
SQLAllocHandle
SQLGetInfoW
SQLNumParams
SQLStatisticsW
ODBCInternalConnectW
SQLConnectA
SQLNativeSqlA
SQLGetEnvAttr
DllBidEntryPoint
SQLGetTypeInfoA
ValidateErrorQueue
SQLBrowseConnectW
SQLSetStmtAttrA
SQLSpecialColumnsW
SQLMoreResults
PostComponentError
PostODBCError
SQLExecDirectA
SQLExecDirectW
SQLPrepareA
SQLGetDiagFieldW
SQLGetDescField
SQLColAttributesA
SQLDriverConnectA
SQLExecDirect
SQLBulkOperations
SQLDataSources
SQLDrivers
LockHandle
SQLDataSourcesW
SQLFreeConnect
SQLGetDescFieldA
SQLFetchScroll
SQLCopyDesc
SQLBindParameter
SQLSetConnectAttrW
SQLRowCount
SQLGetConnectOptionA
SQLColAttributeW
SQLGetCursorNameA
CursorLibLockDbc
SQLStatisticsA
SQLDescribeParam
SQLConnect
SQLGetDiagField
SQLProcedureColumnsW
SQLCloseCursor
SQLNumResultCols
CollectODBCPerfData
SQLStatistics
SQLGetTypeInfo
SQLGetConnectAttrW
GetODBCSharedData
SQLGetConnectOptionW
SQLGetDescRecA
SQLGetDiagRecW
SQLProcedureColumnsA
SQLDescribeCol
SQLGetDiagFieldA
SQLAllocEnv

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 588KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cf3634705ec738ede67257bead4fd6e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winmm

odbc32

Sections

.text Size: 179KB - Virtual size: 179KB

.data Size: 54KB - Virtual size: 54KB

.rsrc Size: 90KB - Virtual size: 588KB

.text
Size: 179KB - Virtual size: 179KB

.data
Size: 54KB - Virtual size: 54KB

.rsrc
Size: 90KB - Virtual size: 588KB