470c069496bc635fbd343a410c744af3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

470c069496bc635fbd343a410c744af3_JaffaCakes118
Size

1.0MB
MD5

470c069496bc635fbd343a410c744af3
SHA1

1767c15591597be87a416a98811aa1d0e7784de8
SHA256

a068fca64adc82d1f65d1ae526c958af9ad60f77f8c7a5c13662f76938472e17
SHA512

d31c3bba350b599a3479e4b23f8d17109faeda1d3e2f60401bd5481098f82a40fec572f5d6194c331f8165d162456badbb9241aec8a183c16e1d919f15c0eea1
SSDEEP

24576:+WPT2JSvPQchQGUisjpmkCk44o/6izjDwYXh:+WPUoQlCImBP16i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
470c069496bc635fbd343a410c744af3_JaffaCakes118

Files

470c069496bc635fbd343a410c744af3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b5f684cf4dd682a1e3eadcc2ebb7da39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
DefWindowProcW
ShowOwnedPopups
DdePostAdvise
DestroyIcon
LoadCursorW
SetWindowsHookExW
GetTopWindow
SubtractRect
IntersectRect
SetRect
BroadcastSystemMessageW
GetCursor
GetCursorPos
EnableScrollBar
AllowSetForegroundWindow
GetKeyboardType
GetDlgItemTextW
BringWindowToTop
IsIconic

advapi32

RegQueryValueExW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
OpenSCManagerW

shlwapi

StrDupW
StrRChrW
StrStrW
SHDeleteEmptyKeyW
PathCreateFromUrlW
PathRemoveBlanksW
PathParseIconLocationW
PathIsURLW
PathIsRelativeW
PathGetDriveNumberW
PathFindFileNameW
PathFileExistsW
StrCmpW

setupapi

CM_Get_Parent_Ex
CM_Get_Parent
CM_Get_DevNode_Registry_Property_ExW
CM_Get_Device_ID_ExW
SetupGetLineCountW
SetupGetFieldCount
SetupGetStringFieldW
CM_Get_Device_IDW
SetupDiGetActualSectionToInstallW
SetupDiSetClassInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiSetDeviceRegistryPropertyW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsExW
SetupDiGetDriverInfoDetailW
SetupDiGetSelectedDriverW
SetupDiEnumDriverInfoW
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDeviceInterfaceW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceInfoListDetailW
SetupDiCreateDeviceInfoListExW
SetupDiCreateDeviceInfoList
SetupInstallFromInfSectionW
SetupCloseFileQueue
SetupOpenFileQueue
SetupGetIntField
SetupFindNextLine

kernel32

GetStringTypeW
HeapReAlloc
HeapAlloc
OutputDebugStringW
RtlUnwind
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
HeapSize
GetLastError
IsDebuggerPresent
GetCPInfo
GetACP
IsValidCodePage
HeapFree
EnterCriticalSection
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameW
GetStartupInfoW
GetFileType
GetStdHandle
GetProcessHeap
GetModuleHandleExW
DecodePointer
EncodePointer
SetLastError
IsProcessorFeaturePresent
GetCommandLineW
GetUserDefaultLCID
GetSystemDefaultLangID
EnumCalendarInfoExW
LCMapStringW
GetProcAddress
GlobalAlloc
GlobalFlags
VirtualAlloc
ExitProcess
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCurrentThreadId
CreateFileW
LeaveCriticalSection
DeleteCriticalSection
WriteFile
FindClose
TzSpecificLocalTimeToSystemTime
lstrlenW
WriteFileGather
LoadLibraryExW
FindNextFileW
MapViewOfFileEx
GetDefaultCommConfigW
GetOEMCP
MultiByteToWideChar
WideCharToMultiByte

winspool.drv

DeleteMonitorW
EndPagePrinter

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 962KB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5f684cf4dd682a1e3eadcc2ebb7da39

Headers

File Characteristics

Imports

user32

advapi32

shlwapi

setupapi

kernel32

winspool.drv

Sections

.text Size: 78KB - Virtual size: 78KB

.data Size: 962KB - Virtual size: 7.3MB

.idata Size: 4KB - Virtual size: 4KB

.xdata Size: 8KB - Virtual size: 8KB

.text
Size: 78KB - Virtual size: 78KB

.data
Size: 962KB - Virtual size: 7.3MB

.idata
Size: 4KB - Virtual size: 4KB

.xdata
Size: 8KB - Virtual size: 8KB