8de1cb89469d1f3601355f044ca4e8f3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8de1cb89469d1f3601355f044ca4e8f3_JaffaCakes118
Size

3.2MB
MD5

8de1cb89469d1f3601355f044ca4e8f3
SHA1

5bdb991a2e82f7077ea13534d4d2e576a41f7b65
SHA256

261961cd1c492678180ddb809ff3b2fe97310fc406a30ca2d2c360ec2775d789
SHA512

aa324ba36e16c1acb7a4161115897fb548c47a30ccab2bcfe6d07546b6c1459f9cac98e098a6c4a8d403564d4846876332e23d552bdf5fba3527806df6af99a7
SSDEEP

24576:ipn6rkqMnGodidc70hDI1hCya+XYj6FU2dQn3k:iQrMngdK06zCV6FRcU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8de1cb89469d1f3601355f044ca4e8f3_JaffaCakes118

Files

8de1cb89469d1f3601355f044ca4e8f3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6e39c164780e7820e7c10d3e34179779

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW

kernel32

GlobalAlloc
LocalAlloc
VirtualAlloc
HeapSize
GetEnvironmentStringsW
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
ResetEvent
WaitForSingleObject
SetCommConfig
FileTimeToSystemTime
lstrcmpW
lstrcmpiW
CreateEventW
ExpandEnvironmentStringsW
SetFileAttributesW
GetFileAttributesW
FindFirstFileExW
FindFirstFileW
GetACP
GetOEMCP
MultiByteToWideChar
GetLocaleInfoW
GetThreadLocale
GetUserDefaultLCID
GetStringTypeW
GetConsoleWindow
CloseHandle
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapReAlloc
HeapAlloc
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
IsValidCodePage
IsDebuggerPresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
CreateFileW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CLSIDFromProgID
ReleaseStgMedium
CreateStreamOnHGlobal

mpr

WNetGetLastErrorW
WNetOpenEnumW

winspool.drv

AddPrinterConnectionW
EnumPrinterDataExW

user32

UnionRect
GetWindowRect
SetScrollPos
ExcludeUpdateRgn
GetMenuItemInfoW
InsertMenuW
DrawMenuBar
SetCapture
GetDialogBaseUnits
CreateIconIndirect
CheckDlgButton
MoveWindow
InSendMessageEx
ExitWindowsEx
PeekMessageW
DdeClientTransaction
DdeEnableCallback
CheckRadioButton

shell32

DragQueryFileW
ShellAboutW
ExtractIconExW
ShellExecuteExW
SHBindToParent

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 885KB - Virtual size: 7.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.t77yns
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ade2rm
Size: 440KB - Virtual size: 440KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.1t2ao
Size: 920KB - Virtual size: 920KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.csym2
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e39c164780e7820e7c10d3e34179779

Headers

File Characteristics

Imports

advapi32

kernel32

ole32

mpr

winspool.drv

user32

shell32

Sections

.text Size: 97KB - Virtual size: 96KB

.data Size: 885KB - Virtual size: 7.9MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.t77yns Size: 286KB - Virtual size: 286KB

.ade2rm Size: 440KB - Virtual size: 440KB

.1t2ao Size: 920KB - Virtual size: 920KB

.csym2 Size: 282KB - Virtual size: 281KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 97KB - Virtual size: 96KB

.data
Size: 885KB - Virtual size: 7.9MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.t77yns
Size: 286KB - Virtual size: 286KB

.ade2rm
Size: 440KB - Virtual size: 440KB

.1t2ao
Size: 920KB - Virtual size: 920KB

.csym2
Size: 282KB - Virtual size: 281KB

.rsrc
Size: 362KB - Virtual size: 362KB