33148d2862ece34dcc6ec0e31d0276da_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

33148d2862ece34dcc6ec0e31d0276da_JaffaCakes118
Size

2.0MB
MD5

33148d2862ece34dcc6ec0e31d0276da
SHA1

6e99507a62c2f9b109db72f114661b041138cfde
SHA256

ffb6aedfe0677c47cb98b1a7899d53feaef14984b6192c24a53e8593b7cac525
SHA512

561d10d444b1d2e28c79f3fd34d65d88291d7bccfe73e4ae03b636b0a984620ad12febe6e5df7e1a34f435302b675d5876dffd233671893d4577e5ad6bcd6401
SSDEEP

24576:wHLnjTguQYjCNJ7vYNTbHrme29lQ76IOtvVzMFCoQwrIazw9PzlJGb8:OPxHCVwRieKlQ2jtNAFCo+hS8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33148d2862ece34dcc6ec0e31d0276da_JaffaCakes118

Files

33148d2862ece34dcc6ec0e31d0276da_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e4ee367fac5fb19c9e09975374d4d617

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeDisconnect
LoadStringW
IsRectEmpty
WindowFromPoint
GetCursorPos
SetWindowTextW
ScrollWindowEx
GetDCEx
MsgWaitForMultipleObjectsEx
CheckDlgButton
EndDeferWindowPos
IsChild
CreateWindowExW

kernel32

EnumDateFormatsW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
OpenJobObjectW
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
FindFirstFileW
GetFileAttributesW
CreateFileW
GetSystemDirectoryW
OutputDebugStringW
GetModuleFileNameW
CreateSemaphoreW
CreateMutexW
lstrlenW
SystemTimeToTzSpecificLocalTime
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
CreateFiberEx
VirtualAlloc
LocalAlloc
SetUnhandledExceptionFilter
IsDebuggerPresent

winspool.drv

AddJobW
FreePrinterNotifyInfo

advapi32

RegOpenKeyExW

comctl32

FlatSB_GetScrollInfo
CreateStatusWindowW
CreateToolbarEx
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragLeave
FlatSB_SetScrollPos
ImageList_EndDrag
ImageList_Replace
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_Create
ord17
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_DragEnter
FlatSB_SetScrollInfo
FlatSB_SetScrollProp
InitializeFlatSB
ImageList_LoadImageW
ImageList_GetIcon

wininet

HttpAddRequestHeadersW
InternetQueryOptionW
InternetConnectW

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 488KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tqror
Size: 553KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t0e38a
Size: 410KB - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reesb9
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4ee367fac5fb19c9e09975374d4d617

Headers

File Characteristics

Imports

user32

kernel32

winspool.drv

advapi32

comctl32

wininet

Sections

.text Size: 72KB - Virtual size: 72KB

.data Size: 488KB - Virtual size: 7.5MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.tqror Size: 553KB - Virtual size: 552KB

.t0e38a Size: 410KB - Virtual size: 409KB

.reesb9 Size: 196KB - Virtual size: 196KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 72KB - Virtual size: 72KB

.data
Size: 488KB - Virtual size: 7.5MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.tqror
Size: 553KB - Virtual size: 552KB

.t0e38a
Size: 410KB - Virtual size: 409KB

.reesb9
Size: 196KB - Virtual size: 196KB

.rsrc
Size: 362KB - Virtual size: 362KB