473d2d6bc53ac7fdc8773736eca21d84_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

473d2d6bc53ac7fdc8773736eca21d84_JaffaCakes118
Size

1.8MB
MD5

473d2d6bc53ac7fdc8773736eca21d84
SHA1

1f32fc42ee5edb0297328743af2c47e0cd8fbc84
SHA256

1af91f62d8ab3e0eae55a43682e6070c55fa80d6a7a08549696f01f4a43aa1be
SHA512

db71ac86377e1010635b7f9a43f83ec5b2d1f573636baad5661d7b161ea3114c2e7f8e3fd9ce1bc8f421b0d1d29b5dc1b2f6fe11c2322b376b94eefdf3db3589
SSDEEP

12288:q4TX+e7OIkJo1qzpXLU29q1SYeBYzgtQdK5Qg4PqUq2JwVRwIu/oXZIrvFmFMr4w:q4T+eEoE9dqwXOcswVRwbQJMdmFZ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
473d2d6bc53ac7fdc8773736eca21d84_JaffaCakes118

Files

473d2d6bc53ac7fdc8773736eca21d84_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9432adb00f02cdd3b53c541f99ab12f1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Locate_DevNodeW
CM_Get_Parent_Ex
CM_Get_Device_IDW
SetupDiGetActualSectionToInstallW
SetupDiSetDeviceRegistryPropertyW
SetupDiGetDeviceRegistryPropertyW
SetupDiCallClassInstaller
SetupDiGetClassDevsExW
SetupDiGetClassDevsW
SetupDiGetSelectedDriverW
SetupDiEnumDriverInfoW
SetupDiGetDeviceInterfaceDetailW
SetupDiCreateDeviceInfoListExW
SetupDiCreateDeviceInfoList
SetupCloseFileQueue

advapi32

RegCreateKeyExW

user32

SetCursorPos
GetScrollPos
ValidateRect
InvalidateRect
ReleaseDC
GetDC
EndMenu
RemoveMenu
DestroyMenu
SetMenu
GetKeyboardType
HideCaret
CallMsgFilterW
GetDlgCtrlID
CheckDlgButton
SetDlgItemTextW
SetDlgItemInt
IsZoomed
PrintWindow
DispatchMessageW
GetMessageW
DrawFrameControl
GetKeyboardLayout
MapWindowPoints
CopyRect
EqualRect
SetWindowLongW
FindWindowExW
DestroyCursor
CharNextW

kernel32

RtlUnwind
LoadLibraryExW
LeaveCriticalSection
OutputDebugStringW
GetACP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
GetOEMCP
GetProcAddress
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
CreateFileW
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
GlobalFree
VirtualAlloc
HeapFree
GetBinaryTypeW
FreeEnvironmentStringsW
EnterCriticalSection
GetFileSizeEx
ReadFile
FileTimeToLocalFileTime
FormatMessageW
TlsFree
FindResourceW
FindResourceExW
DeleteFileW
FindNextFileW
GetVersionExW
GetCPInfo
IsValidLanguageGroup
GetUserDefaultLCID
GetStringTypeW
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
QueryPerformanceCounter
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
HeapAlloc

opengl32

glBindTexture
glCopyTexSubImage2D
glDeleteTextures
glDepthFunc
glDrawArrays
glFlush
glGenTextures
glIsEnabled
glPixelStorei
glStencilFunc
glTexImage2D
glTexSubImage2D

shell32

SHGetDesktopFolder
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteExW
CommandLineToArgvW
SHBindToParent

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 801KB - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ms75a
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uynto
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r0hh07
Size: 418KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9432adb00f02cdd3b53c541f99ab12f1

Headers

File Characteristics

Imports

setupapi

advapi32

user32

kernel32

opengl32

shell32

Sections

.text Size: 134KB - Virtual size: 134KB

.data Size: 801KB - Virtual size: 7.8MB

.idata Size: 4KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.ms75a Size: 267KB - Virtual size: 267KB

.uynto Size: 175KB - Virtual size: 175KB

.r0hh07 Size: 418KB - Virtual size: 417KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 134KB - Virtual size: 134KB

.data
Size: 801KB - Virtual size: 7.8MB

.idata
Size: 4KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.ms75a
Size: 267KB - Virtual size: 267KB

.uynto
Size: 175KB - Virtual size: 175KB

.r0hh07
Size: 418KB - Virtual size: 417KB

.rsrc
Size: 5KB - Virtual size: 4KB