90fd89aff0a959d2faa5fc253a6ab57c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

90fd89aff0a959d2faa5fc253a6ab57c_JaffaCakes118
Size

2.6MB
MD5

90fd89aff0a959d2faa5fc253a6ab57c
SHA1

c4619a96f12aac22f08fb22285e47c8487ce5947
SHA256

9e447dcec4e92e636e7b73b1cd67c4c346aebef81a307e82c4e2c24dcf6af2cb
SHA512

f42beb3497f63e64bee73fa43952ef4da51713feee7a597860605425075c08f4ed199d7eae6ecbb499fdf9e531f1aa73e760e54d6b2a14a9ad42ce1dffd9b2c1
SSDEEP

24576:d2uKRphGl6BItxY0gwrw8Z4PzLoaFm76geVjzrsdXqL1BNtKkrQDS+p5:guApMYJPwrw8d7reVH2qL1BjMp5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
90fd89aff0a959d2faa5fc253a6ab57c_JaffaCakes118

Files

90fd89aff0a959d2faa5fc253a6ab57c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8ff6ee949e7f3725f3278fc3fcb1a306

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

glViewport
glTexImage2D
glStencilOp
glStencilMask
glIsEnabled
glGetFloatv
glGetError
glGenTextures
glEnable
glDisable
glDepthFunc
glCopyTexSubImage2D
glCopyTexImage2D
glColorMask
glClearDepth
glClearColor
glBlendFunc
glBindTexture

kernel32

SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
WriteConsoleW
LoadLibraryExW
HeapFree
SetCommState
LeaveCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsDebuggerPresent
ClearCommBreak
GetFileSize
InitializeCriticalSectionAndSpinCount
CreateFileW
CloseHandle
GetLocaleInfoW
LCMapStringW
MultiByteToWideChar
GetSystemTimeAsFileTime
IsValidCodePage
ExpandEnvironmentStringsW
GetCommandLineW
CreateFileMappingW
SystemTimeToFileTime
OutputDebugStringW
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
EnterCriticalSection
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSection
FreeEnvironmentStringsW
ExitProcess
GetCurrentProcessId
HeapDestroy
VirtualAlloc
RtlUnwind
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile

user32

GetRawInputDeviceList
GetWindowInfo
GetCursorInfo
GetMonitorInfoW
SetScrollInfo
CopyIcon
GetWindow
SetParent
InvertRect
SetScrollRange
EndPaint
DeleteMenu
AppendMenuW
GetMenuItemID
DestroyMenu
CreateMenu
LoadMenuW
ToAscii
GetActiveWindow
CharNextW
IsDlgButtonChecked
CheckDlgButton
DeferWindowPos
ShowOwnedPopups
GetClassInfoExW
SendMessageW
TranslateMessage
FindWindowW

advapi32

RegEnumValueW
RegOpenKeyExW
RegCloseKey

crypt32

CryptExportPublicKeyInfo
CryptProtectData
CryptQueryObject
CertGetNameStringW
CryptHashPublicKeyInfo
CryptExportPKCS8
CertVerifyTimeValidity
CertControlStore
CertGetCertificateContextProperty
CertCloseStore
CryptDecodeObjectEx

shlwapi

SHCreateStreamOnFileEx
AssocQueryStringW
PathCreateFromUrlW
UrlUnescapeW
PathStripPathW
PathSkipRootW
PathRemoveBackslashW
PathIsRootW
PathAddBackslashW
StrRetToStrW
StrToIntExW
StrPBrkW
StrChrIW
UrlIsW

comctl32

CreateToolbarEx
ImageList_SetIconSize
ImageList_Read
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_BeginDrag
ImageList_GetIcon
ImageList_Remove
ImageList_DrawEx
_TrackMouseEvent
ImageList_Draw
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_Destroy
ord17
DestroyPropertySheetPage
FlatSB_GetScrollInfo
FlatSB_GetScrollPos
ImageList_Replace
InitializeFlatSB

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 338KB - Virtual size: 7.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pre9a
Size: 679KB - Virtual size: 678KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.6hsw5
Size: 911KB - Virtual size: 911KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.d85th
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 376KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ff6ee949e7f3725f3278fc3fcb1a306

Headers

File Characteristics

Imports

opengl32

kernel32

user32

advapi32

crypt32

shlwapi

comctl32

Sections

.text Size: 76KB - Virtual size: 76KB

.data Size: 338KB - Virtual size: 7.3MB

.idata Size: 5KB - Virtual size: 4KB

.xdata Size: 1024B - Virtual size: 724B

.pre9a Size: 679KB - Virtual size: 678KB

.6hsw5 Size: 911KB - Virtual size: 911KB

.d85th Size: 249KB - Virtual size: 249KB

.rsrc Size: 376KB - Virtual size: 375KB

.text
Size: 76KB - Virtual size: 76KB

.data
Size: 338KB - Virtual size: 7.3MB

.idata
Size: 5KB - Virtual size: 4KB

.xdata
Size: 1024B - Virtual size: 724B

.pre9a
Size: 679KB - Virtual size: 678KB

.6hsw5
Size: 911KB - Virtual size: 911KB

.d85th
Size: 249KB - Virtual size: 249KB

.rsrc
Size: 376KB - Virtual size: 375KB