038b8be9f3c2faee0acb167a40500ea7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

038b8be9f3c2faee0acb167a40500ea7_JaffaCakes118
Size

2.2MB
MD5

038b8be9f3c2faee0acb167a40500ea7
SHA1

aabdb528fad3e431ae380fe6b0315317f99a7571
SHA256

26a6e6ddb9b6c7861ae4cd7b1bf36b29e40d956056119556d3482f9fd0c0992c
SHA512

c54f0ac1381f0a56a420ff909fefc877174d4f647b7a253730180cd2286efeeaefb874ce92c532a7656e48bfa7df0ae49f6a834736e87af52746847f6140a8f8
SSDEEP

24576:hE29b+bzxtYgg+DiGTJ/ufY4z9EycrUc5aqBRgkdpBNV6XM:h7bulyAldMosIfAXM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
038b8be9f3c2faee0acb167a40500ea7_JaffaCakes118

Files

038b8be9f3c2faee0acb167a40500ea7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

249f2005b0384a4361856d9517543066

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeQueryNextServer
PackDDElParam
MonitorFromRect
MapDialogRect
CopyIcon
InflateRect
FillRect
GetCursor
GetWindowRect
SetWindowTextW
ShowScrollBar
EndPaint
ReleaseDC
RegisterWindowMessageW
GetMenuItemID
CheckMenuItem
IsWindowEnabled
GetFocus
CharPrevW
CharUpperW
GetNextDlgTabItem
BeginDeferWindowPos
IsChild
CreateWindowExW
PostMessageW
SendMessageW
DrawFrameControl
GetDC
SetMenuDefaultItem

winscard

SCardGetStatusChangeW

kernel32

CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
IsValidCodePage
IsDebuggerPresent
GetVersion
GlobalLock
VirtualAlloc
HeapSize
InitAtomTable
SetFilePointer
lstrcmpW
CreateWaitableTimerW
GetStartupInfoW
FindResourceW
CreateFileW
ReplaceFileW
FindNextChangeNotification
GetOEMCP
CompareStringW
EnumTimeFormatsW
GetThreadLocale
EnumSystemLocalesW
GetConsoleWindow
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsProcessorFeaturePresent

mpr

WNetOpenEnumW
WNetGetLastErrorW

advapi32

RegEnumValueW

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 683KB - Virtual size: 7.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yn7o7d
Size: 444KB - Virtual size: 444KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.h1hh
Size: 297KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0er6p
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.7nysh
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

249f2005b0384a4361856d9517543066

Headers

File Characteristics

Imports

user32

winscard

kernel32

mpr

advapi32

Sections

.text Size: 98KB - Virtual size: 97KB

.data Size: 683KB - Virtual size: 7.7MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.yn7o7d Size: 444KB - Virtual size: 444KB

.h1hh Size: 297KB - Virtual size: 297KB

.0er6p Size: 262KB - Virtual size: 261KB

.7nysh Size: 149KB - Virtual size: 148KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 98KB - Virtual size: 97KB

.data
Size: 683KB - Virtual size: 7.7MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.yn7o7d
Size: 444KB - Virtual size: 444KB

.h1hh
Size: 297KB - Virtual size: 297KB

.0er6p
Size: 262KB - Virtual size: 261KB

.7nysh
Size: 149KB - Virtual size: 148KB

.rsrc
Size: 362KB - Virtual size: 362KB