26f2593a083fd4d33be6c68ea74e44fe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26f2593a083fd4d33be6c68ea74e44fe_JaffaCakes118
Size

182KB
MD5

26f2593a083fd4d33be6c68ea74e44fe
SHA1

44d3e0ae9b78d775d14e38ef74574e1ce155a65e
SHA256

2b5152528aba98e7ce4682b8219b0981d92303899a646fb209aebd2ba1f2d8a9
SHA512

fa557f1100588dee359497c4b29ed255ca72765734f2605fc211e5f6d0f93c161828ff8abc9cf70ab3ff43f621233242166efab918c61b8cc6225fb2b31489e6
SSDEEP

3072:cvECTAFOZtPbyRqsMt4BIaAAE3Xg0OXz2YwCRq7zm9xGH10LObPYAknC+0diX2V:RF0p+mCBqSXz2fkqPmOan

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26f2593a083fd4d33be6c68ea74e44fe_JaffaCakes118

Files

26f2593a083fd4d33be6c68ea74e44fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

64028114f9ddf64d5071399c9931f9c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

glu32

gluOrtho2D
gluLookAt
gluScaleImage
gluNurbsCallback

kernel32

SetCriticalSectionSpinCount
ReadFileEx
FindFirstFileA
_lclose
GetUserDefaultLCID
WriteConsoleInputVDMW
CancelIo
HeapCompact
FreeLibrary
GetConsoleAliasExesLengthA
GetThreadLocale
IsDBCSLeadByteEx
GlobalGetAtomNameW
GetTickCount
ReadConsoleOutputW
EnumSystemLocalesW
SetCommConfig
CreateDirectoryW
WriteFile
Process32Next
VirtualAlloc
LocalFileTimeToFileTime
IsBadHugeWritePtr
GetStringTypeExA
EnumLanguageGroupLocalesA
CreateDirectoryA
EscapeCommFunction
SetCurrentDirectoryA
Heap32ListNext
DnsHostnameToComputerNameW
GetFileInformationByHandle
EnumResourceLanguagesA
WritePrivateProfileStructA
HeapQueryInformation
ExitProcess
GetProcessHeaps
LocalHandle
GetConsoleCursorMode
PrivCopyFileExW
GetProcessVersion
SetCalendarInfoW
GetThreadSelectorEntry
DebugActiveProcess
UnmapViewOfFile
lstrcpyA
EnumSystemLanguageGroupsW
CreateNamedPipeA
GetSystemDefaultLCID
GetLastError
SearchPathA
CopyFileW
GetProfileIntW
GlobalUnlock
GetConsoleAliasExesLengthW
SetThreadContext
ShowConsoleCursor
GetFileSizeEx
FlushViewOfFile
GetConsoleTitleW

qdvd

DllCanUnloadNow
DllUnregisterServer
DllGetClassObject
DllRegisterServer

msvbvm60

__vbaLdZeroAry
__vbaCyFix
_CIsqrt
__vbaUI1I4

avifil32

AVIFileOpen
EditStreamSetInfo

kbdsp

KbdLayerDescriptor

msi

MsiGetComponentStateA
MsiCreateTransformSummaryInfoA
DllUnregisterServer
MsiVerifyDiskSpace
MsiGetFileVersionW
MsiViewFetch
MsiLocateComponentW
MsiGetFeatureCostA
MsiApplyMultiplePatchesA
MsiSourceListForceResolutionW
MsiGetProductInfoFromScriptW
MsiGetProductInfoW
MsiEnumClientsW
MsiGetSourcePathW
MsiViewClose
MsiMessageBoxA
MsiEnumPatchesExA
MsiPreviewDialogA
MsiSummaryInfoGetPropertyW
MsiCollectUserInfoA
MsiSetTargetPathW
MsiSetExternalUIW
MsiSetFeatureStateW
MsiSummaryInfoSetPropertyW
MsiViewGetColumnInfo
MsiRecordGetInteger
MsiMessageBoxW
MsiDeterminePatchSequenceW
MsiGetDatabaseState
MsiSourceListClearAllW
MsiConfigureProductExA
MsiPreviewDialogW
MsiGetPatchInfoA
MsiGetPatchInfoW
MsiApplyPatchA
MsiInstallMissingComponentA
MsiProvideComponentFromDescriptorW
MsiDeterminePatchSequenceA

kbdla

KbdLayerDescriptor

ieakeng

SelectADMItem

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 800KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

64028114f9ddf64d5071399c9931f9c5

Headers

File Characteristics

Imports

glu32

kernel32

qdvd

msvbvm60

avifil32

kbdsp

msi

kbdla

ieakeng

Sections

.text Size: 157KB - Virtual size: 157KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: - Virtual size: 800KB

.rsrc Size: 1024B - Virtual size: 820B

.text
Size: 157KB - Virtual size: 157KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: - Virtual size: 800KB

.rsrc
Size: 1024B - Virtual size: 820B