5c32f81ca8f14a0827fa6f48ca888ea2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5c32f81ca8f14a0827fa6f48ca888ea2_JaffaCakes118
Size

1.9MB
MD5

5c32f81ca8f14a0827fa6f48ca888ea2
SHA1

bc580531d100705acd395a75b9b63574e0b7d004
SHA256

1867ed0847d26efbfd4aab09d2feb59680be7ba8a2666a40dcb8bbe4ea379487
SHA512

54125c2eb16baeabb9012d426700aac97e4b0b9f1815075e76a59cd9501999f7031352134812e252d83d9c490bb62252b9c6e215246d0754da94810f8be73586
SSDEEP

24576:47mrO0ygBnLn9WmuRx37myf4LdzdZWmc7q0RtiDuMGRsFV3yb:47m1ymbUmuja0cUb9IBI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c32f81ca8f14a0827fa6f48ca888ea2_JaffaCakes118

Files

5c32f81ca8f14a0827fa6f48ca888ea2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9fee2318944105d20b04a699ecb5705e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
PurgeComm
SetCommMask
SetCommTimeouts
GetLocalTime
TlsFree
CreateFileMappingW
VirtualAlloc
ExpandEnvironmentStringsW
GetFullPathNameW
GetFileAttributesW
MapViewOfFileEx
GetLocaleInfoW
GetConsoleWindow
LocalFree
CreateProcessW
GetVersion
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleW
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
CreateFileW

advapi32

RegEnumValueW
RegSetValueExW

user32

GetMenuItemInfoW
DdeInitializeW
CopyImage
DestroyCursor
CloseDesktop
GetTopWindow
EqualRect
ScreenToClient
GetWindowRect
SetPropW
EnableScrollBar
GetForegroundWindow
IsGUIThread
GetMenuState
SetMenu
CopyAcceleratorTableW
DialogBoxParamW
CreateDialogParamW
BringWindowToTop
IsWindowVisible
EndDeferWindowPos
DefWindowProcW
PeekMessageW

winspool.drv

StartDocPrinterW

oleaut32

GetErrorInfo
SetErrorInfo
RegisterTypeLi
VarNot
VarBstrFromBool
VarBstrFromDate
VarR8FromStr
VarI4FromStr
VariantChangeTypeEx
VariantClear
SafeArrayAccessData
SafeArrayGetUBound
SysStringLen
SysAllocStringLen

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 195KB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wd314
Size: 730KB - Virtual size: 730KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itmo5
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i6re4t
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.f63e
Size: 413KB - Virtual size: 413KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fee2318944105d20b04a699ecb5705e

Headers

File Characteristics

Imports

kernel32

advapi32

user32

winspool.drv

oleaut32

Sections

.text Size: 98KB - Virtual size: 98KB

.data Size: 195KB - Virtual size: 7.2MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.wd314 Size: 730KB - Virtual size: 730KB

.itmo5 Size: 82KB - Virtual size: 82KB

.i6re4t Size: 273KB - Virtual size: 273KB

.f63e Size: 413KB - Virtual size: 413KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 98KB - Virtual size: 98KB

.data
Size: 195KB - Virtual size: 7.2MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.wd314
Size: 730KB - Virtual size: 730KB

.itmo5
Size: 82KB - Virtual size: 82KB

.i6re4t
Size: 273KB - Virtual size: 273KB

.f63e
Size: 413KB - Virtual size: 413KB

.rsrc
Size: 100KB - Virtual size: 100KB