714a092b17b51f258fec66b52dabbe14_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

714a092b17b51f258fec66b52dabbe14_JaffaCakes118
Size

2.2MB
MD5

714a092b17b51f258fec66b52dabbe14
SHA1

34548b01712ac1c4eea849582dab7b8adee7d7e4
SHA256

d5a11bf7f8a933b7ca6338dfbee2b755edff303b674f4e9b1be469ad2c11b4a8
SHA512

85f30e52582309778b57690ad4c95f139a78e3bc12682511fdad6ec530654ae1783f9ed13b836b99fe88a7cd25ca647d04ea47befc04f5b180fc6b3b18908b29
SSDEEP

24576:nyvsn8hh2CXyVXDujcOJpt+hdwTF26+zjR/PVTzyI:nyvTEBSz8Rz9/9CI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
714a092b17b51f258fec66b52dabbe14_JaffaCakes118

Files

714a092b17b51f258fec66b52dabbe14_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a1677dec8b4cfb5a54343b722f3f2f73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupCloseInfFile
SetupGetLineCountW
SetupGetStringFieldW
SetupDiOpenDeviceInterfaceW
SetupDiEnumDriverInfoW
SetupDiGetClassDevsExW
SetupDiGetDeviceInstallParamsW
SetupDiSetClassInstallParamsW
CM_Get_Device_ID_ExW
CM_Get_DevNode_Registry_Property_ExW
CM_Get_DevNode_Status
CM_Get_Parent
CM_Get_Parent_Ex
CM_Locate_DevNodeW
SetupGetIntField

user32

GetClassInfoW
CloseWindowStation
GetPriorityClipboardFormat
MsgWaitForMultipleObjects
SetTimer
GetForegroundWindow
ValidateRect
EnableScrollBar
GetPropW
SetMenuContextHelpId
MessageBeep
GetTopWindow
GetMonitorInfoW
BeginDeferWindowPos

kernel32

DecodePointer
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
GlobalAlloc
LocalFree
VirtualAlloc
GetWriteWatch
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetFileSizeEx
ReadFile
FindClose
SetCommState
GetSystemTime
FileTimeToLocalFileTime
TlsAlloc
LoadLibraryW
GetModuleHandleW
FindResourceExW
FindAtomW
GetFileAttributesW
CopyFileExW
MoveFileW
MapViewOfFileEx
GetACP
IsValidCodePage
IsDebuggerPresent
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
CreateFileW
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcess
TerminateProcess
TlsGetValue
TlsSetValue
TlsFree
IsProcessorFeaturePresent

ole32

CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 302KB - Virtual size: 6.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.otg9
Size: 818KB - Virtual size: 818KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.o3sb23
Size: 529KB - Virtual size: 529KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s2as
Size: 395KB - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1677dec8b4cfb5a54343b722f3f2f73

Headers

File Characteristics

Imports

setupapi

user32

kernel32

ole32

Sections

.text Size: 119KB - Virtual size: 118KB

.data Size: 302KB - Virtual size: 6.6MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.otg9 Size: 818KB - Virtual size: 818KB

.o3sb23 Size: 529KB - Virtual size: 529KB

.s2as Size: 395KB - Virtual size: 395KB

.rsrc Size: 117KB - Virtual size: 117KB

.text
Size: 119KB - Virtual size: 118KB

.data
Size: 302KB - Virtual size: 6.6MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.otg9
Size: 818KB - Virtual size: 818KB

.o3sb23
Size: 529KB - Virtual size: 529KB

.s2as
Size: 395KB - Virtual size: 395KB

.rsrc
Size: 117KB - Virtual size: 117KB