d2e763b7d26f11b4ad5cb1710a5a9f58_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2e763b7d26f11b4ad5cb1710a5a9f58_JaffaCakes118
Size

2.2MB
MD5

d2e763b7d26f11b4ad5cb1710a5a9f58
SHA1

4a4d41b7ecd3142f4e24a1630e311cd4e11b1499
SHA256

b9104f9a826f8c2a278a4f6c3cdc2aa5b7d9c3f8164845894cb8f3354cf6f6bd
SHA512

08d7d0e6b6fb31c9f75ac81b6424d3c08d1c88e23d49afb6dbd409a5ad484c1cd6bf1fcc0bce82f230dada2e8090f91a2392f0feaf2dad0f127d43b708ba174a
SSDEEP

49152:seA4c8D0QztavXGD7qlKOAdMhBI+sNITNNhUkESXFMOBBqKi6XzKgTO:tTdzOIqXRQ+sNIzhUkEmbBgKi6X7TO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2e763b7d26f11b4ad5cb1710a5a9f58_JaffaCakes118

Files

d2e763b7d26f11b4ad5cb1710a5a9f58_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f65c9bc32c50f961e89a5ff091ac8f21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GetWriteWatch
GlobalFix
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
GetModuleFileNameA
MultiByteToWideChar
OpenMutexW
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
ReleaseMutex
RtlUnwind
SetCommBreak
SetEndOfFile
SetErrorMode
SetFilePointer
SetFilePointerEx
SetHandleCount
SetLastError
SetStdHandle
SetTapeParameters
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetConsoleScreenBufferInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetComputerNameA
GetCommandLineW
GetCPInfo
GetACP
FreeEnvironmentStringsW
FormatMessageW
FlushFileBuffers
ExitProcess
EnterCriticalSection
EncodePointer
DeleteFileW
DeleteCriticalSection
DecodePointer
CreateMutexW
CreateFileW
CreateFileA
CloseHandle
BackupSeek
GetProcAddress
GetModuleHandleA
Sleep
MoveFileW
LoadLibraryA

user32

SetCursor
SetMenuDefaultItem
SetTimer
ShowScrollBar
SystemParametersInfoW
UnregisterHotKey
SendMessageA
ScrollWindow
RegisterWindowMessageA
OemToCharBuffW
NotifyWinEvent
MessageBoxW
LoadStringW
LoadStringA
GetWindowModuleFileNameW
DeferWindowPos
CharLowerBuffA
ChangeMenuA
ChangeDisplaySettingsW
ChangeDisplaySettingsA
GetDialogBaseUnits
CopyIcon
IsCharAlphaNumericW
GetDC
IsWindowVisible
GetKeyState
GetOpenClipboardWindow
CreatePopupMenu
CharLowerW
GetLastActivePopup
GetMenu
GetClipboardOwner
ShowCaret
OemKeyScan
LoadCursorFromFileW
GetParent
CountClipboardFormats
GetKeyboardLayout
EnumClipboardFormats
DestroyWindow
LoadIconA
LoadCursorA

gdi32

GetStretchBltMode
GetTextColor
CLIPOBJ_ppoGetPath
CombineRgn
CopyEnhMetaFileA
CreateFontIndirectExW
FlattenPath
GdiAddFontResourceW
GdiDescribePixelFormat
GdiEntry12
GdiFlush
GdiPlayEMF
GdiPlayJournal
AddFontResourceW
GdiSetPixelFormat
GetBitmapBits
GetFontAssocStatus
GetFontLanguageInfo
GetGlyphIndicesW
GetICMProfileA
GetLogColorSpaceW
HT_Get8BPPMaskPalette
PlgBlt
PolyPatBlt
SetICMProfileA
SetWinMetaFileBits
CreateCompatibleDC
WidenPath
GdiResetDCEMF
GdiGetBatchLimit
GetBkMode

advapi32

RegQueryValueExA
RegOpenKeyA
StartServiceCtrlDispatcherW

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 198KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f65c9bc32c50f961e89a5ff091ac8f21

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 198KB - Virtual size: 197KB

.rdata Size: 100KB - Virtual size: 100KB

.data Size: 1.8MB - Virtual size: 1.8MB

.rsrc Size: 106KB - Virtual size: 105KB

.text
Size: 198KB - Virtual size: 197KB

.rdata
Size: 100KB - Virtual size: 100KB

.data
Size: 1.8MB - Virtual size: 1.8MB

.rsrc
Size: 106KB - Virtual size: 105KB