a8935d4b7f2bc431e977a50429c6dd8d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a8935d4b7f2bc431e977a50429c6dd8d_JaffaCakes118
Size

2.5MB
MD5

a8935d4b7f2bc431e977a50429c6dd8d
SHA1

89ef69fb613115e661b06d33279187f1ba7e382a
SHA256

f539c3c6fe9fe26e48586afc1fa5a15de732a17699bf0e225e6e94c60c32c66f
SHA512

6cb089918969112ea9535168ae0b14c03819842d575b407dad3fdc7470cd35af5eefb01ffab4be55ffdc7a06c7e709e5540c7d65d14c68b4ebb4307f4f7dd9b3
SSDEEP

24576:10dlsndABj+XIlrvXgqZNbeijgWEg8YO3l4G6rov/XoaSepN8Q:10/jKqZ1ec8V9+ov/Ws

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8935d4b7f2bc431e977a50429c6dd8d_JaffaCakes118

Files

a8935d4b7f2bc431e977a50429c6dd8d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

edfa264fde874fe5a7fe006be4b53175

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
SetEndOfFile
GetSystemTime
GetSystemTimeAdjustment
GetModuleHandleExW
GetTempPathW
MoveFileExW
OpenJobObjectW
IsValidLocale
GetUserDefaultLCID
GetCommandLineW
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsProcessorFeaturePresent
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
OutputDebugStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
VirtualAlloc
GlobalUnlock
TerminateProcess
GetVersion

user32

SetForegroundWindow
SetWindowRgn
InvalidateRect
ScrollWindowEx
SetScrollRange
MessageBeep
GetCursor
HideCaret
GetClassNameW
GetTopWindow
GetWindow
DeleteMenu
DestroyIcon
CopyIcon
GetIconInfo
IsDialogMessageW
GetMonitorInfoW
EnumDisplayMonitors
DdePostAdvise
CreateDialogParamW
IsIconic
RegisterClassW
PostMessageW
EnableMenuItem
LoadMenuW
GetActiveWindow
RegisterClipboardFormatW
GetNextDlgGroupItem
CreateIcon
IsDlgButtonChecked

advapi32

RegDeleteKeyW
RegQueryInfoKeyW
RegEnumKeyExW

mprapi

MprConfigInterfaceTransportAdd
MprConfigInterfaceGetInfo
MprConfigInterfaceDelete
MprConfigTransportCreate
MprConfigServerDisconnect
MprConfigGetFriendlyName

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 577KB - Virtual size: 7.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r8ne
Size: 447KB - Virtual size: 446KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ih0tn
Size: 376KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ami1hn
Size: 574KB - Virtual size: 574KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.a3eea
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edfa264fde874fe5a7fe006be4b53175

Headers

File Characteristics

Imports

kernel32

user32

advapi32

mprapi

Sections

.text Size: 109KB - Virtual size: 108KB

.data Size: 577KB - Virtual size: 7.2MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.r8ne Size: 447KB - Virtual size: 446KB

.ih0tn Size: 376KB - Virtual size: 375KB

.ami1hn Size: 574KB - Virtual size: 574KB

.a3eea Size: 72KB - Virtual size: 71KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 109KB - Virtual size: 108KB

.data
Size: 577KB - Virtual size: 7.2MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.r8ne
Size: 447KB - Virtual size: 446KB

.ih0tn
Size: 376KB - Virtual size: 375KB

.ami1hn
Size: 574KB - Virtual size: 574KB

.a3eea
Size: 72KB - Virtual size: 71KB

.rsrc
Size: 362KB - Virtual size: 362KB