79142a7acd3cbdf6d41774d590b27adc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

79142a7acd3cbdf6d41774d590b27adc_JaffaCakes118
Size

2.5MB
MD5

79142a7acd3cbdf6d41774d590b27adc
SHA1

0e23d8aca737318f55c5490a95a85d608585033a
SHA256

f3495f7a2360a7d0183165bcef8a9dcea05a09c27a442eae61f884cee9554944
SHA512

ceff698c2909b281c9a9b7b81206ada12f2291feb19a127de6fa6b489354a40b9c41091bc721f7fc3535d3f2805fdc9272aae947c4d143aaf81f9c7af5a47718
SSDEEP

24576:M4Ep8/T+eNj2OQnwJG0BjhBUvS4CA1AQuzwXvp:M4ESDhl5NdWvCIvp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
79142a7acd3cbdf6d41774d590b27adc_JaffaCakes118

Files

79142a7acd3cbdf6d41774d590b27adc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c1750adff93a0e1a735a9a999d7f2886

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseFontW
FindTextW
PageSetupDlgW
CommDlgExtendedError
GetSaveFileNameW

advapi32

RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW

user32

DeferWindowPos
SetWindowPos
ShowWindowAsync
CreateWindowExW
PostMessageW
TranslateMessage
GetKeyboardLayout
GetKeyboardLayoutList
BringWindowToTop
IsZoomed
DialogBoxParamW
CheckDlgButton
CharLowerW
CreatePopupMenu
EnableMenuItem
DeleteMenu
GetDC
GetUpdateRect
RedrawWindow
LockWindowUpdate
EnumPropsW
GetWindowTextLengthW
GetClientRect
MessageBoxW
SetCursorPos
MapWindowPoints
DrawFocusRect
FrameRect
SetRectEmpty
PtInRect
DestroyIcon
CreateIconFromResourceEx
GetMonitorInfoW
WindowFromDC

opengl32

glFlush
glClear
glTexSubImage2D
glTexParameteri
glTexImage2D
glStencilMask
glReadPixels
glPixelStorei
glGetString
glGetIntegerv
glGetError
glGenTextures
glBlendFunc
glEnable
glDrawElements
glDrawArrays
glDepthMask
glDepthFunc
glCopyTexSubImage2D
glCopyTexImage2D
glColorMask
glClearDepth
glClearColor

wsock32

WSAAsyncSelect

kernel32

CreateFileW
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
HeapFree
LeaveCriticalSection
GetCPInfo
GetOEMCP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetModuleFileNameW
DeleteCriticalSection
GetStdHandle
GetProcessHeap
WideCharToMultiByte
GetProcAddress
GetModuleHandleExW
ExitProcess
DecodePointer
GetCurrentThreadId
VirtualAlloc
GetLastError
EnterCriticalSection
ReleaseMutex
WaitForSingleObject
SetHandleCount
GetFileType
GetCommState
GetSystemTimeAsFileTime
GetLocalTime
GetSystemInfo
FileTimeToLocalFileTime
TlsFree
LoadLibraryExW
GetModuleHandleW
GetStartupInfoW
ExpandEnvironmentStringsW
IsBadWritePtr
GetACP
MultiByteToWideChar
CompareStringW
GetCommandLineW
RaiseException
EncodePointer
SetLastError

setupapi

CM_Locate_DevNodeW
CM_Get_Parent
CM_Get_DevNode_Status
CM_Get_DevNode_Registry_Property_ExW
CM_Get_Device_ID_ExW
CM_Get_Device_IDW
SetupDiGetActualSectionToInstallW
SetupDiSetDeviceInstallParamsW
SetupDiGetDeviceInstallParamsW
SetupDiSetDeviceRegistryPropertyW
SetupDiGetDeviceRegistryPropertyW
SetupDiCallClassInstaller
SetupDiGetClassDevsExW
SetupDiGetClassDevsW
SetupDiBuildDriverInfoList
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInstanceIdW
SetupDiOpenDeviceInfoW
SetupDiGetDeviceInfoListDetailW
CM_Get_Parent_Ex
SetupDiCreateDeviceInfoList
SetupInstallFromInfSectionW
SetupOpenFileQueue
SetupGetIntField
SetupGetFieldCount
SetupGetLineCountW
SetupFindFirstLineW
SetupCloseInfFile

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 655KB - Virtual size: 7.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hefyar
Size: 440KB - Virtual size: 440KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pc1r36
Size: 501KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sanf9
Size: 518KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1sptde
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1750adff93a0e1a735a9a999d7f2886

Headers

File Characteristics

Imports

comdlg32

advapi32

user32

opengl32

wsock32

kernel32

setupapi

Sections

.text Size: 119KB - Virtual size: 118KB

.data Size: 655KB - Virtual size: 7.1MB

.idata Size: 5KB - Virtual size: 4KB

.xdata Size: 1024B - Virtual size: 724B

.hefyar Size: 440KB - Virtual size: 440KB

.pc1r36 Size: 501KB - Virtual size: 500KB

.sanf9 Size: 518KB - Virtual size: 518KB

.1sptde Size: 168KB - Virtual size: 168KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 119KB - Virtual size: 118KB

.data
Size: 655KB - Virtual size: 7.1MB

.idata
Size: 5KB - Virtual size: 4KB

.xdata
Size: 1024B - Virtual size: 724B

.hefyar
Size: 440KB - Virtual size: 440KB

.pc1r36
Size: 501KB - Virtual size: 500KB

.sanf9
Size: 518KB - Virtual size: 518KB

.1sptde
Size: 168KB - Virtual size: 168KB

.rsrc
Size: 100KB - Virtual size: 100KB