5db14edda13489336cf48eae9de74572_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5db14edda13489336cf48eae9de74572_JaffaCakes118
Size

2.0MB
MD5

5db14edda13489336cf48eae9de74572
SHA1

9a1f154a6b392cb07a45f321e2867d41e2b7b6c5
SHA256

fce29d920377371b0745e6b201371e7950a48f947e2441b41fe4d12bab11c563
SHA512

5f4c6664cc616c9776959e6082d493a7aecd5a222ba8ba95a515034f36529209f8f64ad000e10993690e9233716fbf966d2479b3ada82902d811e598db4f3005
SSDEEP

24576:1Q5urIdpNw3wtOmKZNk0HsvTLGjgMBzZlTC:K5oIdcKYN5svTtMHE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5db14edda13489336cf48eae9de74572_JaffaCakes118

Files

5db14edda13489336cf48eae9de74572_JaffaCakes118
.exe windows:5 windows x86 arch:x86

439ed07ed2edc0ef2d833d1344f7968f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

EnumMonitorsW

kernel32

VirtualAlloc
HeapSize
ExitProcess
DeleteCriticalSection
WaitForMultipleObjects
SetHandleCount
SetFilePointer
GetSystemInfo
FormatMessageW
FlushViewOfFile
OpenFileMappingW
LoadLibraryExW
GetSystemDirectoryW
GetDiskFreeSpaceExW
CreateFileW
GetFileAttributesW
FindFirstFileW
IsBadStringPtrW
GetLocaleInfoW
EnumDateFormatsW
GetConsoleWindow
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsProcessorFeaturePresent
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
OutputDebugStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
FreeEnvironmentStringsW

user32

DispatchMessageW
DefWindowProcW
RegisterClassW
FlashWindow
DeferWindowPos
IsIconic
EndDialog
SetDlgItemInt
CheckRadioButton
SendDlgItemMessageW
GetDialogBaseUnits
CloseClipboard
CharUpperW
SetFocus
GetActiveWindow
EnableWindow
GetMenu
CreateMenu
TrackPopupMenu
GetDC
InvalidateRect
GetClientRect
AdjustWindowRect
GetCursorPos
ScreenToClient
WindowFromPoint
SetRect
CreateIcon
SystemParametersInfoW
GetKeyboardLayout

advapi32

OpenSCManagerW
RegOpenKeyExW

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 6.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hnag1t
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4htto
Size: 391KB - Virtual size: 390KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.9orr84
Size: 755KB - Virtual size: 754KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.4twvv
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

439ed07ed2edc0ef2d833d1344f7968f

Headers

File Characteristics

Imports

winspool.drv

kernel32

user32

advapi32

Sections

.text Size: 92KB - Virtual size: 91KB

.data Size: 282KB - Virtual size: 6.7MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.hnag1t Size: 332KB - Virtual size: 331KB

.4htto Size: 391KB - Virtual size: 390KB

.9orr84 Size: 755KB - Virtual size: 754KB

.4twvv Size: 128KB - Virtual size: 127KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 92KB - Virtual size: 91KB

.data
Size: 282KB - Virtual size: 6.7MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.hnag1t
Size: 332KB - Virtual size: 331KB

.4htto
Size: 391KB - Virtual size: 390KB

.9orr84
Size: 755KB - Virtual size: 754KB

.4twvv
Size: 128KB - Virtual size: 127KB

.rsrc
Size: 99KB - Virtual size: 99KB