be8eb739d53590c089623cd82e093234_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

be8eb739d53590c089623cd82e093234_JaffaCakes118
Size

2.5MB
MD5

be8eb739d53590c089623cd82e093234
SHA1

a10ef844e20850e686bfc567d72bebd8ad8d2b9a
SHA256

3392db7abcb3de3dde508e18b03d666bc39adae069ab02e5986f6390cc70c462
SHA512

55444d83b0079b8be74f7191d76121c32456ca545546b4b46906754e21de43f8b90b5a6bd72fbb6cf2e1e4c1275b88cc7346560ff1890019b555c874f08ea8f0
SSDEEP

24576:XXcxAPtdzDyJfVECOIavYSFqztoKj1aZK6gr:XMOzW0YhzqKj1aw6gr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
be8eb739d53590c089623cd82e093234_JaffaCakes118

Files

be8eb739d53590c089623cd82e093234_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b1bff34f9c867cdbb2250f133c7f691f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

SetPortW

wininet

HttpAddRequestHeadersW
HttpOpenRequestW
InternetQueryOptionW
InternetOpenUrlW
InternetOpenW

user32

UnpackDDElParam
EnumDisplayMonitors
DestroyCursor
InvertRect
FillRect
HideCaret
SetCursor
GetPropW
EnableScrollBar
SetScrollPos
ScrollWindowEx
InvalidateRect
SetWindowRgn
GetWindowDC
GetDC
SetMenuInfo
GetSubMenu
DrawMenuBar
GetMenuState
KillTimer
CreateDialogParamW
GetWindowPlacement
DestroyWindow
IsWindow
GetMessageW
ActivateKeyboardLayout

opengl32

glViewport
glTexSubImage2D
glTexParameteri
glTexImage2D
glStencilOp
glStencilMask
glReadPixels
glPixelStorei
glIsEnabled
glGetString
glGetIntegerv
glGetFloatv
glGetError
glGenTextures
glFlush
glEnable
glDrawElements
glDrawArrays
glDisable
glDepthMask
glDepthFunc
glDeleteTextures
glCopyTexSubImage2D
glCopyTexImage2D
glColorMask
glClearDepth
glClearColor
glClear
glBlendFunc
glBindTexture

kernel32

WriteConsoleW
GetThreadLocale
CreateFileW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
IsProcessorFeaturePresent
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFile
GetModuleFileNameW
DeleteCriticalSection
GetFileType
GetStdHandle
GetProcessHeap
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
VirtualAlloc
FreeEnvironmentStringsW
OpenThread
EnterCriticalSection
InitAtomTable
FindClose
GetModuleHandleW
CreateProcessW
GetStartupInfoW
GetCommandLineW
FindFirstFileW
FindNextFileW
GetVersionExW
GetModuleHandleExW
GetConsoleWindow
RaiseException
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
CloseHandle

advapi32

RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyW

userenv

UnregisterGPNotification

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 783KB - Virtual size: 7.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.f964p9
Size: 426KB - Virtual size: 426KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.493ps
Size: 371KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nar9gx
Size: 541KB - Virtual size: 541KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1bff34f9c867cdbb2250f133c7f691f

Headers

File Characteristics

Imports

winspool.drv

wininet

user32

opengl32

kernel32

advapi32

userenv

Sections

.text Size: 91KB - Virtual size: 90KB

.data Size: 783KB - Virtual size: 7.5MB

.idata Size: 4KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.f964p9 Size: 426KB - Virtual size: 426KB

.493ps Size: 371KB - Virtual size: 371KB

.nar9gx Size: 541KB - Virtual size: 541KB

.rsrc Size: 362KB - Virtual size: 362KB

.text
Size: 91KB - Virtual size: 90KB

.data
Size: 783KB - Virtual size: 7.5MB

.idata
Size: 4KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.f964p9
Size: 426KB - Virtual size: 426KB

.493ps
Size: 371KB - Virtual size: 371KB

.nar9gx
Size: 541KB - Virtual size: 541KB

.rsrc
Size: 362KB - Virtual size: 362KB