75a7f99cabf09e7dcceddf9f054659ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75a7f99cabf09e7dcceddf9f054659ec_JaffaCakes118
Size

2.6MB
MD5

75a7f99cabf09e7dcceddf9f054659ec
SHA1

9ac71364e54c2323f17af7120c3d83ebd1e8dcc2
SHA256

0a17cf13dbf12fbee75796fe833d6212a669df3c8eb600d17282a61b4b6912c4
SHA512

087bbe51ec8fc36b32f69092442e29febd1552d931a9bafbacda7478df36948cc5eb93408891ecc659bd3707befe9cd25ea1ab6401ac521b82c8426a85b036ea
SSDEEP

24576:9LJmsNrmlPIcAjvOmdKXMSIEoItkvUFDGKxZ65uPJiq:9LJmEwP8juIEokKUj0uPJiq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75a7f99cabf09e7dcceddf9f054659ec_JaffaCakes118

Files

75a7f99cabf09e7dcceddf9f054659ec_JaffaCakes118
.exe windows:5 windows x86 arch:x86

29f6537e1d4182f3c8efc8cf1ec3c691

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

CoInternetCreateSecurityManager

user32

MapDialogRect
IsDialogMessageW
LoadIconW
GetWindowLongW
InvertRect
MapWindowPoints
GetCursorPos
SetCursor
GetScrollRange
ScrollWindowEx
ValidateRect
GetDC
GetTabbedTextExtentW
SetMenuDefaultItem
GetMenuItemID
GetSubMenu
LoadMenuW
GetSystemMetrics
SendInput
CharPrevW
CharUpperW
EndDialog
BeginDeferWindowPos
SetWindowPos
IsWindow
RegisterClassExW
UnregisterClassW
RegisterClassW
DispatchMessageW
GetKeyboardLayout

kernel32

SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
EnterCriticalSection
GetCPInfo
GetACP
IsValidCodePage
SetFilePointerEx
IsProcessorFeaturePresent
TlsFree
FreeResource
GlobalAlloc
VirtualAlloc
HeapSize
LeaveCriticalSection
ReleaseSemaphore
SetHandleCount
GetFileSize
SetEndOfFile
GetFileTime
CreateMutexW
GetModuleFileNameW
GetModuleHandleW
CreateFileW
FindNextFileW
FindCloseChangeNotification
GetOEMCP
WideCharToMultiByte
EnumSystemGeoID
GetSystemDefaultLangID
EnumSystemLocalesW
WriteConsoleW
IsDebuggerPresent
CloseHandle
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
WriteFile
QueryPerformanceCounter
TlsSetValue

advapi32

RegQueryInfoKeyW
RegSetValueExW

setupapi

CM_Locate_DevNodeW
CM_Get_Parent_Ex
CM_Get_DevNode_Registry_Property_ExW
CM_Get_Device_ID_ExW
SetupDiGetActualSectionToInstallW
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsW
SetupDiEnumDriverInfoW
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInstanceIdW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceInfoListDetailW

Sections

.text
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 846KB - Virtual size: 8.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.s58c7
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.6wtf89
Size: 236KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2rslea
Size: 554KB - Virtual size: 554KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aoe1nm
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 365KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29f6537e1d4182f3c8efc8cf1ec3c691

Headers

File Characteristics

Imports

urlmon

user32

kernel32

advapi32

setupapi

Sections

.text Size: 141KB - Virtual size: 140KB

.data Size: 846KB - Virtual size: 8.0MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.s58c7 Size: 313KB - Virtual size: 313KB

.6wtf89 Size: 236KB - Virtual size: 236KB

.2rslea Size: 554KB - Virtual size: 554KB

.aoe1nm Size: 216KB - Virtual size: 216KB

.rsrc Size: 365KB - Virtual size: 364KB

.text
Size: 141KB - Virtual size: 140KB

.data
Size: 846KB - Virtual size: 8.0MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.s58c7
Size: 313KB - Virtual size: 313KB

.6wtf89
Size: 236KB - Virtual size: 236KB

.2rslea
Size: 554KB - Virtual size: 554KB

.aoe1nm
Size: 216KB - Virtual size: 216KB

.rsrc
Size: 365KB - Virtual size: 364KB