4175ca1cb808c94c6cbd74f7fec88eee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4175ca1cb808c94c6cbd74f7fec88eee_JaffaCakes118
Size

2.0MB
MD5

4175ca1cb808c94c6cbd74f7fec88eee
SHA1

3c03eacd85d1c4ac5168199ad19ea8ef40fbfc91
SHA256

f9cefaabdb64b0bc91bdff64a369c546b5af423f3b276b67ba31552104c2369d
SHA512

c3b5f6742f899166e6c1da6f4cced03e987e2aed02475633862415360464f5359b671cd3f7036b200ad486fdd9425ae725af3aec2340c68be5650e6e437d5dd1
SSDEEP

24576:wHL+u4rjeIFCCVmyQ79lQ7n0wiVW9l+CoQwrI3zw9PzwJGc8:O+n/R3alQ7n6Al+CoZho8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4175ca1cb808c94c6cbd74f7fec88eee_JaffaCakes118

Files

4175ca1cb808c94c6cbd74f7fec88eee_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e4ee367fac5fb19c9e09975374d4d617

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeDisconnect
LoadStringW
IsRectEmpty
WindowFromPoint
GetCursorPos
SetWindowTextW
ScrollWindowEx
GetDCEx
MsgWaitForMultipleObjectsEx
CheckDlgButton
EndDeferWindowPos
IsChild
CreateWindowExW

kernel32

EnumDateFormatsW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
OpenJobObjectW
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
FindFirstFileW
GetFileAttributesW
CreateFileW
GetSystemDirectoryW
OutputDebugStringW
GetModuleFileNameW
CreateSemaphoreW
CreateMutexW
lstrlenW
SystemTimeToTzSpecificLocalTime
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
CreateFiberEx
VirtualAlloc
LocalAlloc
SetUnhandledExceptionFilter
IsDebuggerPresent

winspool.drv

AddJobW
FreePrinterNotifyInfo

advapi32

RegOpenKeyExW

comctl32

FlatSB_GetScrollInfo
CreateStatusWindowW
CreateToolbarEx
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_DragLeave
FlatSB_SetScrollPos
ImageList_EndDrag
ImageList_Replace
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_Create
ord17
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_DragEnter
FlatSB_SetScrollInfo
FlatSB_SetScrollProp
InitializeFlatSB
ImageList_LoadImageW
ImageList_GetIcon

wininet

HttpAddRequestHeadersW
InternetQueryOptionW
InternetConnectW

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 488KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tqror
Size: 553KB - Virtual size: 552KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t0e38a
Size: 410KB - Virtual size: 409KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reesb9
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4ee367fac5fb19c9e09975374d4d617

Headers

File Characteristics

Imports

user32

kernel32

winspool.drv

advapi32

comctl32

wininet

Sections

.text Size: 72KB - Virtual size: 72KB

.data Size: 488KB - Virtual size: 7.5MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.tqror Size: 553KB - Virtual size: 552KB

.t0e38a Size: 410KB - Virtual size: 409KB

.reesb9 Size: 196KB - Virtual size: 196KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 72KB - Virtual size: 72KB

.data
Size: 488KB - Virtual size: 7.5MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.tqror
Size: 553KB - Virtual size: 552KB

.t0e38a
Size: 410KB - Virtual size: 409KB

.reesb9
Size: 196KB - Virtual size: 196KB

.rsrc
Size: 362KB - Virtual size: 362KB