138bd31e7e053ea02df80bc2ead3bd9b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

138bd31e7e053ea02df80bc2ead3bd9b_JaffaCakes118
Size

2.8MB
MD5

138bd31e7e053ea02df80bc2ead3bd9b
SHA1

edfa9812620c1f04f0ac823ab7d1cd1bfce1f541
SHA256

d4e0a6c3b6b4f61b380b13b7535faff16e6d8f52cf92ab5e0525d689d80c7548
SHA512

8f7751d6b6834613a93cf3c63b9ab4db4442b2ec8fbbca29c18c9103a6b5f2866eb1bc92dc886c8baee068110b9e39976d0078b2587d6f4eeff96ef08da66645
SSDEEP

24576:EUHSO3NYtSbZcpN18ef1Ex0vxW5uP02a57k/YqnQVbd:zHSQFSrBOx0Hw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
138bd31e7e053ea02df80bc2ead3bd9b_JaffaCakes118

Files

138bd31e7e053ea02df80bc2ead3bd9b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b1e177e9c0d54ce8968d82f73e0c9085

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GlobalAlloc
GlobalFlags
GlobalLock
GlobalFree
VirtualAlloc
HeapAlloc
HeapReAlloc
HeapFree
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsSystemResumeAutomatic
GetTimeZoneInformation
CreateMutexW
CreateEventW
GetModuleFileNameW
GetModuleHandleW
OutputDebugStringW
FindResourceExW
GlobalAddAtomW
GetTempPathW
GetFileAttributesW
FindNextFileW
IsBadStringPtrW
LCMapStringW
GetConsoleWindow
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
HeapSize
GetStringTypeW
LoadLibraryExW
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetStartupInfoW
DeleteCriticalSection
GetFileType
GetStdHandle
GetProcessHeap
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
GetModuleHandleExW
ExitProcess
DecodePointer
GetCurrentThreadId
SetLastError
GetLastError
EncodePointer
CreateFileW
IsProcessorFeaturePresent
RaiseException
GetCommandLineW

user32

DrawEdge
ExitWindowsEx
UnregisterClassW
GetWindowPlacement
SetScrollInfo
IsDialogMessageW
LoadImageW
DestroyCursor
InvertRect
DrawFocusRect
GetCursorPos
AdjustWindowRectEx
GetWindowTextW
GetPropW
ScrollWindowEx
GetMenuItemInfoW
InsertMenuW
GetSystemMenu
SetMenu
RegisterClipboardFormatW

ole32

PropVariantClear
ReleaseStgMedium
CreateStreamOnHGlobal
CLSIDFromString

opengl32

glGenTextures
glClear
glClearColor
glClearDepth
glColorMask
glCopyTexSubImage2D
glDeleteTextures
glDepthFunc
glDepthMask
glDisable
glDrawArrays
glDrawElements
glEnable
glFlush
glGetError
glGetFloatv
glGetIntegerv
glGetString
glIsEnabled
glPixelStorei
glStencilMask
glStencilOp
glTexImage2D
glTexParameteri
glTexSubImage2D
glViewport
glBlendFunc

shlwapi

PathAppendW
PathAddBackslashW
StrCmpW
StrToIntExW
StrToIntW
StrFormatByteSizeW
PathIsRelativeW
StrCmpNIW
PathFindFileNameW
AssocQueryStringW
SHSetValueW
SHGetValueW
UrlEscapeW
PathStripToRootW
PathRemoveFileSpecW
PathRemoveExtensionW
PathIsUNCServerW
PathIsNetworkPathW
PathIsUNCW
StrChrIW
StrCmpIW

shell32

Shell_NotifyIconW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHChangeNotify
DragQueryFileW

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 869KB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.evat
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.06i5
Size: 325KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1t81h4
Size: 533KB - Virtual size: 533KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdatr
Size: 401KB - Virtual size: 401KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1e177e9c0d54ce8968d82f73e0c9085

Headers

File Characteristics

Imports

kernel32

user32

ole32

opengl32

shlwapi

shell32

Sections

.text Size: 83KB - Virtual size: 83KB

.data Size: 869KB - Virtual size: 7.2MB

.idata Size: 4KB - Virtual size: 4KB

.xdata Size: 1024B - Virtual size: 724B

.evat Size: 273KB - Virtual size: 273KB

.06i5 Size: 325KB - Virtual size: 325KB

.1t81h4 Size: 533KB - Virtual size: 533KB

.hdatr Size: 401KB - Virtual size: 401KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 83KB - Virtual size: 83KB

.data
Size: 869KB - Virtual size: 7.2MB

.idata
Size: 4KB - Virtual size: 4KB

.xdata
Size: 1024B - Virtual size: 724B

.evat
Size: 273KB - Virtual size: 273KB

.06i5
Size: 325KB - Virtual size: 325KB

.1t81h4
Size: 533KB - Virtual size: 533KB

.hdatr
Size: 401KB - Virtual size: 401KB

.rsrc
Size: 362KB - Virtual size: 362KB