61019f7f0907f1b4c516aaf5ae9ec667_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

61019f7f0907f1b4c516aaf5ae9ec667_JaffaCakes118
Size

2.3MB
MD5

61019f7f0907f1b4c516aaf5ae9ec667
SHA1

528987b2ad09ebb2486258aeb731d44ec881eab8
SHA256

0e2e6e166de01536a6b82dcd3ae84a24ad12f1331da7a435830cec7f509534a6
SHA512

5fd8a96426f0a3da7b5357dce1d4ae8382614308224e3c4ff3a7a9713f9ed368e6313385f7a7924c17218705d8e903c29d1bcc77735fbe9bb5623e8e173863b0
SSDEEP

24576:Vpe7Udu1tLpf5IkSVvR7BlsMJxw8qgejoyGpx9:/0Ug1Jpf5147BlsIqwyej

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
61019f7f0907f1b4c516aaf5ae9ec667_JaffaCakes118

Files

61019f7f0907f1b4c516aaf5ae9ec667_JaffaCakes118
.exe windows:5 windows x86 arch:x86

013f559cc8ce233cb753727308aa909a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

OpenSCManagerW

psapi

GetMappedFileNameW
GetDeviceDriverBaseNameW
GetDeviceDriverFileNameW
GetModuleBaseNameW

opengl32

glTexSubImage2D
glClear
glClearColor
glClearDepth
glColorMask
glCopyTexImage2D
glCopyTexSubImage2D
glDeleteTextures
glDepthFunc
glDepthMask
glDisable
glDrawArrays
glDrawElements
glEnable
glFlush
glGenTextures
glGetError
glGetFloatv
glGetIntegerv
glGetString
glPixelStorei
glReadPixels
glStencilFunc
glStencilMask
glStencilOp
glTexImage2D
glTexParameteri
glViewport
glBindTexture
glBlendFunc

winspool.drv

SetJobW

kernel32

WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
GetStringTypeW
RtlUnwind
LoadLibraryExW
HeapFree
EnterCriticalSection
GetCPInfo
GetOEMCP
IsValidCodePage
IsDebuggerPresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
GlobalUnlock
VirtualAlloc
HeapDestroy
HeapAlloc
HeapReAlloc
HeapSize
GetEnvironmentStringsW
GetLastError
InitializeCriticalSection
LeaveCriticalSection
ReadFile
CloseHandle
GetSystemTime
GetLocalTime
DosDateTimeToFileTime
GetMailslotInfo
lstrlenW
GetCommandLineW
OutputDebugStringW
FindResourceW
GetTempPathW
CreateDirectoryW
FindFirstFileExW
GetACP
GetCPInfoExW
EnumDateFormatsExW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetModuleFileNameW
GetStartupInfoW
DeleteCriticalSection
GetFileType
GetStdHandle
GetProcessHeap
WideCharToMultiByte
MultiByteToWideChar
CreateFileW
GetProcAddress
GetModuleHandleExW
ExitProcess
DecodePointer
GetCurrentThreadId
SetLastError
EncodePointer
IsProcessorFeaturePresent
RaiseException

user32

GetDoubleClickTime
GetClassInfoExW
CreateWindowExW
ShowWindow
ShowOwnedPopups
MoveWindow
CharUpperW
CharNextW
LoadAcceleratorsW
SetMenu
CreateMenu
GetMenuItemCount
TrackPopupMenuEx
ReleaseDC
EnableScrollBar
RemovePropW
SetWindowTextW
WindowFromPoint
CopyRect
SetWindowsHookExW
LoadCursorW
DefWindowProcW
GetMessageTime
ExitWindowsEx
GetMenuState
GetKeyboardLayoutList

userenv

ExpandEnvironmentStringsForUserW
RegisterGPNotification
EnterCriticalPolicySection
GetUserProfileDirectoryW

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 752KB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.89e9i
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.g7iu2
Size: 412KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.t074y
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uhkn7
Size: 516KB - Virtual size: 516KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

013f559cc8ce233cb753727308aa909a

Headers

File Characteristics

Imports

advapi32

psapi

opengl32

winspool.drv

kernel32

user32

userenv

Sections

.text Size: 98KB - Virtual size: 97KB

.data Size: 752KB - Virtual size: 7.1MB

.idata Size: 4KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.89e9i Size: 276KB - Virtual size: 275KB

.g7iu2 Size: 412KB - Virtual size: 412KB

.t074y Size: 160KB - Virtual size: 159KB

.uhkn7 Size: 516KB - Virtual size: 516KB

.rsrc Size: 109KB - Virtual size: 108KB

.text
Size: 98KB - Virtual size: 97KB

.data
Size: 752KB - Virtual size: 7.1MB

.idata
Size: 4KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.89e9i
Size: 276KB - Virtual size: 275KB

.g7iu2
Size: 412KB - Virtual size: 412KB

.t074y
Size: 160KB - Virtual size: 159KB

.uhkn7
Size: 516KB - Virtual size: 516KB

.rsrc
Size: 109KB - Virtual size: 108KB