f272a8434d85b30e09a21d8ff90454c9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f272a8434d85b30e09a21d8ff90454c9_JaffaCakes118
Size

262KB
MD5

f272a8434d85b30e09a21d8ff90454c9
SHA1

ae78d635ef2154e7337c65e63987794bc8dd2ba4
SHA256

fc26cad3d766431b50ae3060aab93ce9838cee2013569ea1b077ea88fb02893f
SHA512

ab091ec097a599568154bbb0395089e5889e64e29e69c822468a9a9042637c7e7b886c8b5808bf94e45ceed083b637235aa0e629aed2a1127ce54d8c958b6f98
SSDEEP

6144:T/JdISJWCpyvaWr1k36HETxosE6QxQfBxrgolr28l6hU9S:DJdISJWCIvaW1+1TGhf0bgl8l6hiS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f272a8434d85b30e09a21d8ff90454c9_JaffaCakes118

Files

f272a8434d85b30e09a21d8ff90454c9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46d15ce95132ba58114d1b4af8cf892a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
ExitProcess
OpenFile
MulDiv
GetTempFileNameA
GetFullPathNameA
CopyFileExA
GetProcAddress
FindAtomW
GetLastError
SetComputerNameW

user32

EmptyClipboard
WinHelpA
CreateAcceleratorTableW
DialogBoxParamA
GetKeyState
GetFocus
GetMenuItemRect
GetMenu
EnumDesktopWindows
SetCursorPos
IsWindow
TrackPopupMenu
CharUpperW
EndMenu
CreateAcceleratorTableA
LoadIconW
GetMenuStringA
EnumChildWindows
GetDlgItemTextW
GetMenuStringW
GetDC
ArrangeIconicWindows
MessageBoxIndirectA
LoadMenuIndirectW
ActivateKeyboardLayout
LoadMenuA
BringWindowToTop
GetCapture
CreateDialogParamA
GetActiveWindow
CreateDialogParamW
CharUpperA
SetMenu
FindWindowW
WaitMessage
DefDlgProcA
InsertMenuW
LoadImageA
IsWindowEnabled
CreateMenu
SendDlgItemMessageA
PeekMessageW

gdi32

RestoreDC
LPtoDP
StretchDIBits
GetDCOrgEx
SetBitmapDimensionEx
AngleArc
GetGraphicsMode
CreateBitmapIndirect
OffsetWindowOrgEx
GetGlyphOutlineA

advapi32

RegQueryValueW
RegCreateKeyExA
RegRestoreKeyW

opengl32

glPixelZoom
glColor3s
glTexCoord4i
glTexCoord4s
glIsTexture
glInitNames
glLineWidth
glGetTexEnvfv

urlmon

BindAsyncMoniker
RegisterBindStatusCallback
CoInternetCompareUrl
CreateURLMonikerEx
URLDownloadToFileW

winspool.drv

DeletePrinter
OpenPrinterA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ORFPGq
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dPz
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hf
Size: 1024B - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.auCle
Size: 2KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.JtMaq
Size: 1KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jNlvjB
Size: 1024B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.roSqR
Size: 2KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jZRVJr
Size: 1024B - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46d15ce95132ba58114d1b4af8cf892a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

opengl32

urlmon

winspool.drv

Sections

.text Size: 12KB - Virtual size: 11KB

.ORFPGq Size: 512B - Virtual size: 4KB

.dPz Size: 1KB - Virtual size: 4KB

.hf Size: 1024B - Virtual size: 41KB

.auCle Size: 2KB - Virtual size: 12KB

.JtMaq Size: 1KB - Virtual size: 22KB

.jNlvjB Size: 1024B - Virtual size: 28KB

.roSqR Size: 2KB - Virtual size: 30KB

.data Size: 5KB - Virtual size: 4KB

.jZRVJr Size: 1024B - Virtual size: 275KB

.rsrc Size: 228KB - Virtual size: 227KB

.text
Size: 12KB - Virtual size: 11KB

.ORFPGq
Size: 512B - Virtual size: 4KB

.dPz
Size: 1KB - Virtual size: 4KB

.hf
Size: 1024B - Virtual size: 41KB

.auCle
Size: 2KB - Virtual size: 12KB

.JtMaq
Size: 1KB - Virtual size: 22KB

.jNlvjB
Size: 1024B - Virtual size: 28KB

.roSqR
Size: 2KB - Virtual size: 30KB

.data
Size: 5KB - Virtual size: 4KB

.jZRVJr
Size: 1024B - Virtual size: 275KB

.rsrc
Size: 228KB - Virtual size: 227KB