JaffaCakes118_c10d21460f9e9a0bacb84f0e220b534c

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_c10d21460f9e9a0bacb84f0e220b534c
Size

277KB
MD5

c10d21460f9e9a0bacb84f0e220b534c
SHA1

0e69e7b79867aa58ca9f86e761dd63666d725026
SHA256

672bbb763bb38ef8ffb1c3337dcb9525d52867b5869542661204b4f6e584e1ca
SHA512

8b5cf9e2dc1785cbd6840418cfb9d5da054920670332d532f20e18ac3af639f57bc3ce9cb98c1959391197b3fcdf677b59cd2808def4d13d219a6654150a4633
SSDEEP

6144:2V1VjlMindSC/xSAZ21ICSFjmf9fWDCxS2K0naW+tIqlnlkka:21jlMiSGxBUVSFmf9fx2G4eu6r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_c10d21460f9e9a0bacb84f0e220b534c

Files

JaffaCakes118_c10d21460f9e9a0bacb84f0e220b534c
.exe windows:4 windows x86 arch:x86

330f2c5dace9c3041f0ad21343d6373a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
lstrcpyA
ExpandEnvironmentStringsA
lstrcpyW
ExpandEnvironmentStringsW
GetCurrentThreadId
GetSystemInfo
GetModuleHandleW
GetTempPathA
GetTempFileNameA
SetErrorMode
OpenEventA
OpenMutexA
OpenSemaphoreA
CreateEventA
GetSystemDirectoryA
CreateSemaphoreA
SleepEx
QueryPerformanceFrequency
SetUnhandledExceptionFilter
CreateSemaphoreW
WaitForSingleObject
GetModuleHandleA
FreeLibrary
GetProcessHeap
CreateMutexA
IsDebuggerPresent
GetStartupInfoW
GetProcAddress

user32

GetSystemMetrics
wsprintfA
CharUpperA
CharLowerA
CharUpperW
CharLowerW

advapi32

DuplicateTokenEx
GetUserNameA
LookupAccountSidA
LookupPrivilegeValueA
AdjustTokenPrivileges
GetTokenInformation
EqualSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
AllocateAndInitializeSid
GetLengthSid
FreeSid
CopySid
OpenThreadToken
ImpersonateLoggedOnUser
OpenProcessToken
DuplicateToken
SetThreadToken
RevertToSelf

shlwapi

PathUnExpandEnvStringsW
PathUnExpandEnvStringsA

rtutils

RouterLogRegisterW
RouterLogEventW
RouterLogDeregisterW
TraceVprintfExW
LogEventW

iyuv_32

DllMain
AboutDialogProc

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ui
Size: 4KB - Virtual size: 539KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.TRYlp
Size: 99KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DZ
Size: 1KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qsdP
Size: 1024B - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.GRSLe
Size: 115KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.FmqEgM
Size: 3KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

330f2c5dace9c3041f0ad21343d6373a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shlwapi

rtutils

iyuv_32

Sections

.text Size: 18KB - Virtual size: 17KB

.ui Size: 4KB - Virtual size: 539KB

.TRYlp Size: 99KB - Virtual size: 120KB

.DZ Size: 1KB - Virtual size: 97KB

.rdata Size: 2KB - Virtual size: 7KB

.qsdP Size: 1024B - Virtual size: 29KB

.data Size: 7KB - Virtual size: 178KB

.GRSLe Size: 115KB - Virtual size: 136KB

.FmqEgM Size: 3KB - Virtual size: 184KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 18KB - Virtual size: 17KB

.ui
Size: 4KB - Virtual size: 539KB

.TRYlp
Size: 99KB - Virtual size: 120KB

.DZ
Size: 1KB - Virtual size: 97KB

.rdata
Size: 2KB - Virtual size: 7KB

.qsdP
Size: 1024B - Virtual size: 29KB

.data
Size: 7KB - Virtual size: 178KB

.GRSLe
Size: 115KB - Virtual size: 136KB

.FmqEgM
Size: 3KB - Virtual size: 184KB

.rsrc
Size: 24KB - Virtual size: 24KB