d1bf6658acca2c311ddfa33022cb1858_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d1bf6658acca2c311ddfa33022cb1858_JaffaCakes118
Size

2.1MB
MD5

d1bf6658acca2c311ddfa33022cb1858
SHA1

b8ec1e83ef40ce164b3fd14d128b03ac0e71c487
SHA256

23a7329c3a2b198935821599a5ea86d4ccf0224d07b0e56ffaba31e6e6319dc3
SHA512

188b71e0e46ed15ba13ff58be1067747e2f9cece07b86e68065d56d7521b28e2e0d8a3d81ef6914e0b6a93f8591d179ee1804eaaa86deaf4a46454337c47a60a
SSDEEP

24576:obEAUBfDtGFbvf5Grk8zvkkVtcFvLLNIGTKuX7Xv:obwBc1vf2dz6Fv+GOuLf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1bf6658acca2c311ddfa33022cb1858_JaffaCakes118

Files

d1bf6658acca2c311ddfa33022cb1858_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4cba2b7ee784816d62f5a3a96fdbd986

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ExitWindowsEx
SetScrollRange
UnregisterClassW
RegisterClassExW
DdeNameService
SystemParametersInfoW
IsDialogMessageW
CopyIcon
LoadBitmapW
GetWindow
GetParent
UnionRect
GetWindowRect
GetWindowTextLengthW
SetPropW
DrawFrameControl
SetWindowRgn
GetWindowDC
GetDC
UpdateWindow
SetMenuInfo
AppendMenuW
DrawMenuBar
GetSystemMetrics
KillTimer
CheckDlgButton
SetDlgItemInt
BringWindowToTop
IsIconic
BeginDeferWindowPos
GetLayeredWindowAttributes
CreateWindowExW

advapi32

RegDeleteKeyW

kernel32

WriteConsoleW
SetFilePointerEx
SetStdHandle
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
CloseHandle
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetOEMCP
GetACP
IsValidCodePage
IsDebuggerPresent
HeapReAlloc
RaiseException
GlobalLock
VirtualAlloc
HeapDestroy
CreateFiberEx
WaitForSingleObject
InitAtomTable
SetEndOfFile
SetFilePointer
MulDiv
GetSystemTime
GetSystemTimeAsFileTime
GetSystemInfo
FlushViewOfFile
lstrlenW
CreateMutexW
CreateEventW
LoadLibraryW
CreateProcessW
FindResourceW
GetPrivateProfileIntW
DeleteFileW
FindFirstFileW
GetCPInfo
EnumDateFormatsExW
GetConsoleWindow
IsProcessorFeaturePresent
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCommandLineW
CreateFileW
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess

winscard

SCardGetStatusChangeW

secur32

DeleteSecurityContext
TranslateNameW
QuerySecurityPackageInfoW
InitializeSecurityContextW

winspool.drv

GetSpoolFileHandle

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 252KB - Virtual size: 6.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ra64oy
Size: 1008KB - Virtual size: 1008KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cee8e5
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.156s1
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rn3eo
Size: 183KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 365KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cba2b7ee784816d62f5a3a96fdbd986

Headers

File Characteristics

Imports

user32

advapi32

kernel32

winscard

secur32

winspool.drv

Sections

.text Size: 125KB - Virtual size: 125KB

.data Size: 252KB - Virtual size: 6.8MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.ra64oy Size: 1008KB - Virtual size: 1008KB

.cee8e5 Size: 148KB - Virtual size: 148KB

.156s1 Size: 107KB - Virtual size: 107KB

.rn3eo Size: 183KB - Virtual size: 182KB

.rsrc Size: 365KB - Virtual size: 364KB

.text
Size: 125KB - Virtual size: 125KB

.data
Size: 252KB - Virtual size: 6.8MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.ra64oy
Size: 1008KB - Virtual size: 1008KB

.cee8e5
Size: 148KB - Virtual size: 148KB

.156s1
Size: 107KB - Virtual size: 107KB

.rn3eo
Size: 183KB - Virtual size: 182KB

.rsrc
Size: 365KB - Virtual size: 364KB