4a89f2ddd19046e97bfd0a012558e673_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4a89f2ddd19046e97bfd0a012558e673_JaffaCakes118
Size

2.1MB
MD5

4a89f2ddd19046e97bfd0a012558e673
SHA1

85da5bdb37d7a2c7e6ab34e01a72e090a1518606
SHA256

1d842d841402506a6143c5dac736efcd2f05fb5b28efb8aa19d0f5a213bb10a9
SHA512

6f0396b4da3584e07c7171b2dac94f24e295b624f5422664e9d38537c8a3d78947f3d684b9f928a49ed16497adbadcc2a7134833c41be7fa2ff5dd06a71af614
SSDEEP

24576:pEDUhJVc2nXEufMpRS8VSuk+KAep7fo7qKVzapt:pRJi21kZk/tfo5V+t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4a89f2ddd19046e97bfd0a012558e673_JaffaCakes118

Files

4a89f2ddd19046e97bfd0a012558e673_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2a3a527cfcc1259607b94c16d4cd6711

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegCreateKeyExW

kernel32

VirtualAlloc
GetLastError
ReleaseSemaphore
GetFileType
GetFileSize
SystemTimeToFileTime
FormatMessageW
lstrcmpW
CreateMutexW
ExpandEnvironmentStringsW
FindResourceExW
WritePrivateProfileStructW
GetFileAttributesW
QueryPerformanceCounter
GetVersionExW
GetOEMCP
CompareStringW
GetUserGeoID
GetConsoleWindow
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsDebuggerPresent
IsValidCodePage
GetACP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
OutputDebugStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW

user32

CheckDlgButton
IsDlgButtonChecked
GetNextDlgTabItem
CharLowerW
CharPrevW
GetActiveWindow
GetFocus
LoadAcceleratorsW
LoadMenuW
GetSubMenu
AppendMenuW
GetDlgItem
SetActiveWindow
GetDC
BeginPaint
SetWindowRgn
GetPropW
GetCursor
IntersectRect
GetClassWord
DestroyCursor
GetIconInfo
GetScrollBarInfo
IsIconic
EndDeferWindowPos
ShowWindow
PostMessageW
PeekMessageW
TrackPopupMenu
GetMessageW

mprapi

MprConfigInterfaceEnum
MprConfigInterfaceCreate
MprConfigTransportDelete
MprConfigServerDisconnect
MprConfigServerConnect
MprConfigInterfaceTransportGetHandle

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 840KB - Virtual size: 8.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.utho
Size: 449KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.toiu
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.e27elr
Size: 492KB - Virtual size: 491KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a3a527cfcc1259607b94c16d4cd6711

Headers

File Characteristics

Imports

advapi32

kernel32

user32

mprapi

Sections

.text Size: 132KB - Virtual size: 131KB

.data Size: 840KB - Virtual size: 8.0MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.utho Size: 449KB - Virtual size: 449KB

.toiu Size: 103KB - Virtual size: 102KB

.e27elr Size: 492KB - Virtual size: 491KB

.rsrc Size: 101KB - Virtual size: 101KB

.text
Size: 132KB - Virtual size: 131KB

.data
Size: 840KB - Virtual size: 8.0MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.utho
Size: 449KB - Virtual size: 449KB

.toiu
Size: 103KB - Virtual size: 102KB

.e27elr
Size: 492KB - Virtual size: 491KB

.rsrc
Size: 101KB - Virtual size: 101KB