fe16fe2a5b90197aa8649341eaf75412_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe16fe2a5b90197aa8649341eaf75412_JaffaCakes118
Size

2.5MB
MD5

fe16fe2a5b90197aa8649341eaf75412
SHA1

df11551eb0fff6080392280a186e7fc034d34083
SHA256

81ff60895e0424dd58a72b2052f5b5bd1ce9d322e82e1469a178abb2e8b60f8f
SHA512

274a23507babaa6dd3e55280d11e52b7933aa14b7f3f808656e13cf5f3fd17521e38b7c7af8987a16adc530d1b803af54f1f65e41a8bbd4025c194628977d00b
SSDEEP

24576:AJOEModJ1Kv8Sle7Lv3pgkYyZPBiAWZXkyUva3y:AJOEvdJclMv51Nxy33y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe16fe2a5b90197aa8649341eaf75412_JaffaCakes118

Files

fe16fe2a5b90197aa8649341eaf75412_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0f81ab4b398d73a8116b67cac830eb91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetMenu
CharPrevW
LoadIconW
IsDialogMessageW
GetIconInfo
ShowWindow
CheckMenuRadioItem
GetClassNameW
BeginPaint
ReleaseDC
DrawMenuBar

kernel32

CreateJobObjectW
IsValidCodePage
CompareStringW
GetLocaleInfoW
GetConsoleWindow
FindNextChangeNotification
FindNextFileW
FindFirstFileExW
GetCompressedFileSizeW
HeapSize
HeapReAlloc
HeapAlloc
GetFileAttributesW
RemoveDirectoryW
CreateDirectoryW
FindAtomW
FindResourceW
CreateProcessW
GetModuleFileNameW
PeekNamedPipe
LocalFileTimeToFileTime
EscapeCommFunction
InitAtomTable
EnterCriticalSection
InitializeCriticalSection
ExitProcess
VirtualAlloc
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsDebuggerPresent
GetACP
GetOEMCP
GetCPInfo
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
OutputDebugStringW
GetStringTypeW

advapi32

RegCloseKey
RegDeleteValueW

ntdsapi

DsBindW

winspool.drv

GetPrintProcessorDirectoryW
CloseSpoolFileHandle

comctl32

CreateStatusWindowW
CreateToolbarEx
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Write
ImageList_Read
ImageList_DragShowNolock
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter
_TrackMouseEvent
ImageList_LoadImageW
ImageList_GetIcon
ImageList_DrawEx
ImageList_AddMasked
ImageList_Replace
ImageList_Draw
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControlsEx
DestroyPropertySheetPage
FlatSB_GetScrollInfo
ImageList_EndDrag
FlatSB_SetScrollInfo

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 911KB - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.l5is
Size: 444KB - Virtual size: 443KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.08h913
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3e4et
Size: 403KB - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 363KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f81ab4b398d73a8116b67cac830eb91

Headers

File Characteristics

Imports

user32

kernel32

advapi32

ntdsapi

winspool.drv

comctl32

Sections

.text Size: 115KB - Virtual size: 114KB

.data Size: 911KB - Virtual size: 7.8MB

.idata Size: 4KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.l5is Size: 444KB - Virtual size: 443KB

.08h913 Size: 335KB - Virtual size: 335KB

.3e4et Size: 403KB - Virtual size: 403KB

.rsrc Size: 363KB - Virtual size: 362KB

.text
Size: 115KB - Virtual size: 114KB

.data
Size: 911KB - Virtual size: 7.8MB

.idata
Size: 4KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.l5is
Size: 444KB - Virtual size: 443KB

.08h913
Size: 335KB - Virtual size: 335KB

.3e4et
Size: 403KB - Virtual size: 403KB

.rsrc
Size: 363KB - Virtual size: 362KB