10efbd7faf7f2c94f36a1e1c26677e2d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

10efbd7faf7f2c94f36a1e1c26677e2d_JaffaCakes118
Size

2.4MB
MD5

10efbd7faf7f2c94f36a1e1c26677e2d
SHA1

766f60cf7337a07f22d86904c9d950435901c668
SHA256

36158df5f0f574fc6e2d017811da5225852dd7e05257bfa41e0eaee35d746f0d
SHA512

ccb328308e177c0ea04e189763d1cbd6290b0cfc2bfd6facaa65a2c2b081d0e1a4cef54b57dc3e9067d260c9d746dfec79c481aed5398b533a6e2aade24c7dfe
SSDEEP

24576:nkLc3tzTUH4k8k2WFKUF5DQtLARdY0lMz4b94PdbeCqTncrDJQGMmanUn:nS6c4kv2awCzIPdkcfMq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
10efbd7faf7f2c94f36a1e1c26677e2d_JaffaCakes118

Files

10efbd7faf7f2c94f36a1e1c26677e2d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bd9bd4d61068ee4077116e833439cb6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeGetData
GetRawInputBuffer
SetWindowsHookExW
GetParent
GetSysColorBrush
MessageBoxW
GetWindowContextHelpId
EnumPropsW
GetMenuItemInfoW
GetMenuItemCount
GetSubMenu
CheckMenuItem
LoadAcceleratorsW
GetLastInputInfo
ToAscii
GetNextDlgGroupItem
TranslateMessage

mprapi

MprConfigInterfaceTransportAdd
MprConfigBufferFree
MprConfigTransportCreate
MprConfigTransportDelete
MprConfigTransportGetInfo
MprConfigInterfaceEnum
MprConfigInterfaceTransportGetHandle
MprConfigServerConnect

shlwapi

PathParseIconLocationW
PathIsNetworkPathW
PathIsRootW
PathGetDriveNumberW
PathFileExistsW
PathCombineW
PathCanonicalizeW
UrlCanonicalizeW
StrRetToStrW
StrCmpIW
StrTrimW
StrToIntExW
StrCmpNIW
StrCmpNW
UrlUnescapeW
SHDeleteEmptyKeyW
SHDeleteKeyW
SHDeleteValueW
SHSetValueW
AssocQueryStringW
SHCreateStreamOnFileEx
SHStrDupW

kernel32

CreateFileW
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
GetVersion
VirtualAlloc
GetEnvironmentStringsW
GetFileType
SetFileShortNameW
CreateSemaphoreW
GetModuleHandleW
GetProfileIntW
AreFileApisANSI
GetVersionExW
GetLocaleInfoW
GetThreadLocale
GetConsoleWindow
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
UnhandledExceptionFilter

advapi32

OpenSCManagerW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 578KB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0e06s
Size: 367KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0rr8s1
Size: 568KB - Virtual size: 567KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.l6360
Size: 396KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iooh9
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd9bd4d61068ee4077116e833439cb6f

Headers

File Characteristics

Imports

user32

mprapi

shlwapi

kernel32

advapi32

Sections

.text Size: 126KB - Virtual size: 125KB

.data Size: 578KB - Virtual size: 7.0MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.0e06s Size: 367KB - Virtual size: 367KB

.0rr8s1 Size: 568KB - Virtual size: 567KB

.l6360 Size: 396KB - Virtual size: 396KB

.iooh9 Size: 313KB - Virtual size: 313KB

.rsrc Size: 140KB - Virtual size: 139KB

.text
Size: 126KB - Virtual size: 125KB

.data
Size: 578KB - Virtual size: 7.0MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.0e06s
Size: 367KB - Virtual size: 367KB

.0rr8s1
Size: 568KB - Virtual size: 567KB

.l6360
Size: 396KB - Virtual size: 396KB

.iooh9
Size: 313KB - Virtual size: 313KB

.rsrc
Size: 140KB - Virtual size: 139KB