66a90da3f55a31a67737212339cfdff7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

66a90da3f55a31a67737212339cfdff7_JaffaCakes118
Size

2.4MB
MD5

66a90da3f55a31a67737212339cfdff7
SHA1

6fc9e8449859f9d7e6ffbeaf08041675aa321ffc
SHA256

2c17d0db4573fa30add0cb752cf2b0d87d865ec96f028d9ac67a2c198294c740
SHA512

e1f5e917a83fd3137914539533d151500a026ef76d30ec533776e32a527ba97e285fc6bf956ab69ebb0b9a2814a819b48b2ee60a9b9ced17a29fc554d4203c1e
SSDEEP

24576:f2pGIe/kUrFi6xiPxa/Ib+Znmp6aJPNuG41Kz7AKO+:fMckSFPx0v5JVfRPh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66a90da3f55a31a67737212339cfdff7_JaffaCakes118

Files

66a90da3f55a31a67737212339cfdff7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

393d74403ba3b51ff595653fd9c81772

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeAbandonTransaction
GetIconInfo
GetTopWindow
DrawFocusRect
ClientToScreen
RemovePropW
ScrollWindowEx
BeginPaint
SetActiveWindow
SetMenuItemInfoW
TrackPopupMenuEx
AppendMenuW
InsertMenuW
SetMenu
GetMenu
SetTimer
MapVirtualKeyExW
GetOpenClipboardWindow
MoveWindow

opengl32

glStencilMask
glDepthFunc
glTexSubImage2D
glTexParameteri
glTexImage2D
glCopyTexImage2D
glGenTextures
glEnable
glDrawElements
glDepthMask

advapi32

RegCreateKeyExW

kernel32

GlobalFree
VirtualAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
EnterCriticalSection
WaitForSingleObject
SetFileValidData
SetFileShortNameW
GetCommConfig
MulDiv
TlsAlloc
LoadLibraryExW
GetModuleHandleW
DeleteFileW
FindFirstFileW
GetUserDefaultLCID
GetStringTypeW
GetConsoleWindow
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
LeaveCriticalSection
HeapFree
RtlUnwind
OutputDebugStringW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
CreateFileW
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
PurgeComm
TlsFree
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsGetValue
TlsSetValue

crypt32

CertVerifyCertificateChainPolicy
CertFreeCertificateChain
CertGetCertificateChain
CryptProtectData
CertGetNameStringW
CryptExportPKCS8
CryptAcquireCertificatePrivateKey
CryptExportPublicKeyInfo
CertFindExtension
CertVerifyTimeValidity
CryptHashCertificate
CertGetPublicKeyLength
CertGetEnhancedKeyUsage
CertAddStoreToCollection
CryptBinaryToStringW
CertGetCertificateContextProperty
CertSetCertificateContextProperty
CertFreeCertificateContext
CertCreateCertificateContext
CertEnumCertificatesInStore
CertOpenStore
CryptMsgGetParam
CryptMsgUpdate
CryptMsgClose
CryptMsgOpenToDecode
CryptEnumOIDInfo
CryptDecodeObject
CryptEncodeObject
CertFreeCRLContext
CryptHashPublicKeyInfo

shell32

SHFileOperationW

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 811KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.et1901
Size: 307KB - Virtual size: 306KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ooihh
Size: 326KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.95i8t
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2en2
Size: 503KB - Virtual size: 502KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

393d74403ba3b51ff595653fd9c81772

Headers

File Characteristics

Imports

user32

opengl32

advapi32

kernel32

crypt32

shell32

Sections

.text Size: 104KB - Virtual size: 104KB

.data Size: 811KB - Virtual size: 7.5MB

.idata Size: 4KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.et1901 Size: 307KB - Virtual size: 306KB

.ooihh Size: 326KB - Virtual size: 325KB

.95i8t Size: 244KB - Virtual size: 243KB

.2en2 Size: 503KB - Virtual size: 502KB

.rsrc Size: 109KB - Virtual size: 109KB

.text
Size: 104KB - Virtual size: 104KB

.data
Size: 811KB - Virtual size: 7.5MB

.idata
Size: 4KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.et1901
Size: 307KB - Virtual size: 306KB

.ooihh
Size: 326KB - Virtual size: 325KB

.95i8t
Size: 244KB - Virtual size: 243KB

.2en2
Size: 503KB - Virtual size: 502KB

.rsrc
Size: 109KB - Virtual size: 109KB