628724a766e4894f685b73dbbe84a1b9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

628724a766e4894f685b73dbbe84a1b9_JaffaCakes118
Size

1.7MB
MD5

628724a766e4894f685b73dbbe84a1b9
SHA1

f8d7230b013248ac17e23d1dfcfd13a4670cb325
SHA256

942af07e7d9d822fc322cba598eeebc07893efe2cb48caba7ab7acef16a41995
SHA512

5d8f8bfb76d91b04260ffca222703c7db124dadeaa6c4a8a1d5160623b02b0da867b6e54674138af144b89edd35f09b9e9f7790aeb4951018ba44eebb70c2028
SSDEEP

24576:JS44tMzrk1t0j8UkzoWLIrjhewxddXbCfEs:Jg6PoUkzjLI3fddXbiR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
628724a766e4894f685b73dbbe84a1b9_JaffaCakes118

Files

628724a766e4894f685b73dbbe84a1b9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ee88f6374c177495b5536fabb9092ebc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawIconEx
LoadCursorW
GetWindow
GetDesktopWindow
GetWindowLongW
FillRect
SetCursor
MessageBoxW
SetScrollPos
ScrollWindowEx
DragDetect
GetMenuItemInfoW
GetMenuCheckMarkDimensions
DestroyMenu
CreatePopupMenu
LoadAcceleratorsW
MsgWaitForMultipleObjects
GetFocus
GetOpenClipboardWindow
GetClipboardOwner
CloseClipboard
GetDialogBaseUnits
IsDlgButtonChecked
CheckDlgButton
CreateDialogParamW
IsZoomed
EndDeferWindowPos
MoveWindow
GetClassInfoExW
RegisterClassW
PostMessageW
DispatchMessageW
GetKeyboardLayout
GetKeyboardLayoutList

winscard

SCardFreeMemory

advapi32

RegCreateKeyExW
OpenSCManagerW

wintrust

CryptCATAdminEnumCatalogFromHash

secur32

GetUserNameExW
FreeContextBuffer

kernel32

GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
RtlUnwind
LoadLibraryExW
GetConsoleMode
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
TlsFree
TlsSetValue
TlsGetValue
CreateFileW
SetStdHandle
CloseHandle
WriteConsoleW
TerminateProcess
GetCurrentProcess
Sleep
VirtualAlloc
GetEnvironmentStringsW
GetLastError
GetFileType
GetCommConfig
FileTimeToDosDateTime
DosDateTimeToFileTime
TlsAlloc
LoadLibraryW
GetModuleHandleW
CreateProcessW
OutputDebugStringW
FindResourceExW
GetDiskFreeSpaceW
CreateDirectoryW
GetVersionExW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
SetFilePointerEx

winspool.drv

FreePrinterNotifyInfo

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 391KB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.y22t
Size: 562KB - Virtual size: 561KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.n40l
Size: 412KB - Virtual size: 412KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.r2e1aa
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee88f6374c177495b5536fabb9092ebc

Headers

File Characteristics

Imports

user32

winscard

advapi32

wintrust

secur32

kernel32

winspool.drv

Sections

.text Size: 132KB - Virtual size: 131KB

.data Size: 391KB - Virtual size: 7.0MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.y22t Size: 562KB - Virtual size: 561KB

.n40l Size: 412KB - Virtual size: 412KB

.r2e1aa Size: 116KB - Virtual size: 115KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 132KB - Virtual size: 131KB

.data
Size: 391KB - Virtual size: 7.0MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.y22t
Size: 562KB - Virtual size: 561KB

.n40l
Size: 412KB - Virtual size: 412KB

.r2e1aa
Size: 116KB - Virtual size: 115KB

.rsrc
Size: 99KB - Virtual size: 99KB