d98da6c567b16db67ac32cbd28e32d6f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d98da6c567b16db67ac32cbd28e32d6f_JaffaCakes118
Size

900KB
MD5

d98da6c567b16db67ac32cbd28e32d6f
SHA1

b36ddd1907269faa7ae2c590434b8d1269644a63
SHA256

dd256df63b85a446d3b7a54d69692f0f038d825a7f5c7f1c5d0ec241c1eab943
SHA512

85d248afc89b0314ab4ecc3309f468f374754ad5ed9f01c833a05be307065efbca5492c67bc8c9fe9afe8e250f72b78561ca44f9e84739f97d1d2fc64565ba6e
SSDEEP

24576:se8Z4Xsx2D0kL6N2euY+iCavXjiD11jqlL:seA4c8D0QztavXGD7qlL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d98da6c567b16db67ac32cbd28e32d6f_JaffaCakes118

Files

d98da6c567b16db67ac32cbd28e32d6f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f65c9bc32c50f961e89a5ff091ac8f21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GetWriteWatch
GlobalFix
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
GetModuleFileNameA
MultiByteToWideChar
OpenMutexW
OutputDebugStringW
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
ReleaseMutex
RtlUnwind
SetCommBreak
SetEndOfFile
SetErrorMode
SetFilePointer
SetFilePointerEx
SetHandleCount
SetLastError
SetStdHandle
SetTapeParameters
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetConsoleScreenBufferInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetComputerNameA
GetCommandLineW
GetCPInfo
GetACP
FreeEnvironmentStringsW
FormatMessageW
FlushFileBuffers
ExitProcess
EnterCriticalSection
EncodePointer
DeleteFileW
DeleteCriticalSection
DecodePointer
CreateMutexW
CreateFileW
CreateFileA
CloseHandle
BackupSeek
GetProcAddress
GetModuleHandleA
Sleep
MoveFileW
LoadLibraryA

user32

SetCursor
SetMenuDefaultItem
SetTimer
ShowScrollBar
SystemParametersInfoW
UnregisterHotKey
SendMessageA
ScrollWindow
RegisterWindowMessageA
OemToCharBuffW
NotifyWinEvent
MessageBoxW
LoadStringW
LoadStringA
GetWindowModuleFileNameW
DeferWindowPos
CharLowerBuffA
ChangeMenuA
ChangeDisplaySettingsW
ChangeDisplaySettingsA
GetDialogBaseUnits
CopyIcon
IsCharAlphaNumericW
GetDC
IsWindowVisible
GetKeyState
GetOpenClipboardWindow
CreatePopupMenu
CharLowerW
GetLastActivePopup
GetMenu
GetClipboardOwner
ShowCaret
OemKeyScan
LoadCursorFromFileW
GetParent
CountClipboardFormats
GetKeyboardLayout
EnumClipboardFormats
DestroyWindow
LoadIconA
LoadCursorA

gdi32

GetStretchBltMode
GetTextColor
CLIPOBJ_ppoGetPath
CombineRgn
CopyEnhMetaFileA
CreateFontIndirectExW
FlattenPath
GdiAddFontResourceW
GdiDescribePixelFormat
GdiEntry12
GdiFlush
GdiPlayEMF
GdiPlayJournal
AddFontResourceW
GdiSetPixelFormat
GetBitmapBits
GetFontAssocStatus
GetFontLanguageInfo
GetGlyphIndicesW
GetICMProfileA
GetLogColorSpaceW
HT_Get8BPPMaskPalette
PlgBlt
PolyPatBlt
SetICMProfileA
SetWinMetaFileBits
CreateCompatibleDC
WidenPath
GdiResetDCEMF
GdiGetBatchLimit
GetBkMode

advapi32

RegQueryValueExA
RegOpenKeyA
StartServiceCtrlDispatcherW

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 198KB - Virtual size: 197KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f65c9bc32c50f961e89a5ff091ac8f21

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

Sections

.text Size: 198KB - Virtual size: 197KB

.rdata Size: 100KB - Virtual size: 100KB

.data Size: 1.8MB - Virtual size: 1.8MB

.rsrc Size: 106KB - Virtual size: 105KB

.text
Size: 198KB - Virtual size: 197KB

.rdata
Size: 100KB - Virtual size: 100KB

.data
Size: 1.8MB - Virtual size: 1.8MB

.rsrc
Size: 106KB - Virtual size: 105KB