JaffaCakes118_1a9c2bcff5d99647e27b9405e4b3e38f

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_1a9c2bcff5d99647e27b9405e4b3e38f
Size

257KB
MD5

1a9c2bcff5d99647e27b9405e4b3e38f
SHA1

7fc7d38af77abfb21649ebfabd8542a00aa6d9e2
SHA256

c2a4adc89c30e4909b91415d503e992c0b6d36dba358dcec06437d16f5d2b85f
SHA512

6024bfd006249c717ff85fd71cb14c486bc62ceef287913cc3927e293d424582e5a029053d0f892171c1ecf8b70101ae1864f1f21bf923bd5a128c3e2eca8828
SSDEEP

6144:FD9sntZ8cWJOcUz6QYO7fvxc0Im3oFmO797QwnE4hMt:VSt+cWJOBOVO7vrIU67dDE4hM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1a9c2bcff5d99647e27b9405e4b3e38f

Files

JaffaCakes118_1a9c2bcff5d99647e27b9405e4b3e38f
.exe windows:4 windows x86 arch:x86

2185d49a49bb7b59a0a13360c3f963c5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
GetTokenInformation
OpenThreadToken
GetUserNameA

kernel32

WaitForSingleObject
FindClose
GetFileSize
IsDebuggerPresent
FindFirstFileW
GetUserDefaultLCID
GetTempFileNameW
CreateThread
FreeLibrary
FormatMessageW
FindNextFileA
ReleaseMutex
GetSystemTimeAsFileTime
GetModuleHandleW
GetCurrentThreadId
FindNextFileW
CreateDirectoryA
CreateDirectoryW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LCMapStringA
GetCurrentDirectoryA
CloseHandle
GetTempPathW
GlobalFree
CreateMutexW
CreateFileW
GetSystemDirectoryA
LocalFree
FindFirstFileA
GetStringTypeExA
GetACP
VirtualAlloc

ws2_32

select
inet_addr
bind
getsockopt
__WSAFDIsSet
connect
recv
inet_ntoa
getsockname
closesocket
send
ioctlsocket
WSACleanup
accept
getservbyport
WSAGetLastError
WSAStartup
socket
htons
getservbyname
WSASetLastError
listen
gethostbyname
htonl
gethostbyaddr
ntohs

ole32

CoTaskMemFree

wininet

DetectAutoProxyUrl

iassvcs

IASUninitialize
IASSetMaxNumberOfThreads
IASReportEvent

dpnlobby

DirectPlay8LobbyCreate

Sections

.ZnjXKcl
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ

.SezVYa
Size: 512B - Virtual size: 14KB

IMAGE_SCN_MEM_READ

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.NYRXV
Size: 1024B - Virtual size: 878B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wHjZdqa
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CzSxG
Size: 512B - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ISaAJr
Size: 512B - Virtual size: 426B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MuPPIZP
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PdCNXDO
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.odKjZ
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.HxFijzu
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CPVzf
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2185d49a49bb7b59a0a13360c3f963c5

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

kernel32

ws2_32

ole32

wininet

iassvcs

dpnlobby

Sections

.ZnjXKcl Size: 2KB - Virtual size: 20KB

.SezVYa Size: 512B - Virtual size: 14KB

.text Size: 18KB - Virtual size: 18KB

.NYRXV Size: 1024B - Virtual size: 878B

.wHjZdqa Size: 3KB - Virtual size: 2KB

.CzSxG Size: 512B - Virtual size: 380B

.ISaAJr Size: 512B - Virtual size: 426B

.data Size: 6KB - Virtual size: 25KB

.MuPPIZP Size: 3KB - Virtual size: 2KB

.rdata Size: 207KB - Virtual size: 207KB

.PdCNXDO Size: 2KB - Virtual size: 2KB

.odKjZ Size: 3KB - Virtual size: 2KB

.HxFijzu Size: 1KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 3KB

.CPVzf Size: 2KB - Virtual size: 1KB

.ZnjXKcl
Size: 2KB - Virtual size: 20KB

.SezVYa
Size: 512B - Virtual size: 14KB

.text
Size: 18KB - Virtual size: 18KB

.NYRXV
Size: 1024B - Virtual size: 878B

.wHjZdqa
Size: 3KB - Virtual size: 2KB

.CzSxG
Size: 512B - Virtual size: 380B

.ISaAJr
Size: 512B - Virtual size: 426B

.data
Size: 6KB - Virtual size: 25KB

.MuPPIZP
Size: 3KB - Virtual size: 2KB

.rdata
Size: 207KB - Virtual size: 207KB

.PdCNXDO
Size: 2KB - Virtual size: 2KB

.odKjZ
Size: 3KB - Virtual size: 2KB

.HxFijzu
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 3KB

.CPVzf
Size: 2KB - Virtual size: 1KB