5a0ff9ac2b1f64038aaeb077e4c7daca_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5a0ff9ac2b1f64038aaeb077e4c7daca_JaffaCakes118
Size

389KB
MD5

5a0ff9ac2b1f64038aaeb077e4c7daca
SHA1

39d389ac45a1f2736d8b5958005c506ddeb9dc7b
SHA256

ed995d2142c3bf0e319996e4608c6f3a2fe9573d34b29dbbc2ed1e6bc9b27245
SHA512

7b16d5df1a860908b0ac0fbcfa59601eab8771d6afbec2eba8126fd1253f627b918ab0bdbc3b92f92b3812d1b205d82463edf263319224fd9ce36785944460ec
SSDEEP

12288:hY2ogHxQhEEL/xdbe2Xjnh1vuyTWnlxc3ouxsxj:vpHxQOYDzTTuyLouxKj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
5a0ff9ac2b1f64038aaeb077e4c7daca_JaffaCakes118

Files

5a0ff9ac2b1f64038aaeb077e4c7daca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4053e15e0130e53d5e5093114eec27c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnionRect
FrameRect
DeleteMenu
CreateIconIndirect
DestroyWindow
KillTimer
wsprintfA
CreateWindowExA
SendMessageA
InflateRect
SetFocus
RegisterClassA
SetPropA
LoadCursorA
GetWindowPlacement
CreateDialogParamA
GetParent
TrackPopupMenuEx
GetMenuItemCount
GetWindowLongA
GetPropA
SetTimer
LoadAcceleratorsA
InvalidateRect
DefWindowProcA
CheckRadioButton
UpdateWindow
MapWindowPoints
GetClientRect
GetCursorPos
SetCursor
EnableWindow
SetDlgItemTextA
GetSysColorBrush
CallWindowProcA
IsDlgButtonChecked
SetWindowPlacement
SystemParametersInfoA
DefFrameProcA
FindWindowA
IsDialogMessageA
EndDeferWindowPos
LoadMenuA
PeekMessageA
EndPaint
SetClipboardData
SetScrollInfo
GetKeyState
GetSubMenu
RedrawWindow
GetCapture
LoadImageA
ExitWindowsEx
GetWindow
DeferWindowPos
GetMenuItemID
FindWindowExA
BeginPaint
EnableMenuItem
SetWindowPos
GetScrollInfo
DefDlgProcA
GetWindowThreadProcessId
TranslateMessage
IntersectRect
SendMessageTimeoutA
GetWindowRect
DispatchMessageA
SetCapture
EndDialog
MoveWindow
ClientToScreen
GetDC
OpenClipboard
ChildWindowFromPoint
TrackPopupMenu
GetFocus
GetWindowTextA
FillRect
GetSystemMetrics
ReleaseCapture
DefMDIChildProcA
IsIconic
DialogBoxParamA
RegisterWindowMessageA
ShowWindow
MsgWaitForMultipleObjects
SetWindowTextA
SetWindowLongA
CreatePopupMenu
RegisterClassExA
IsZoomed
InvalidateRgn
CreateMenu
GetSysColor
CloseClipboard
SetForegroundWindow
ReleaseDC
OffsetRect
LoadBitmapA
SetMenuItemInfoA
DrawFrameControl
IsWindowVisible
TranslateAcceleratorA
ScreenToClient
LoadIconA
DrawTextA
DrawIconEx
EnumChildWindows
LoadStringA
DestroyIcon
GetDoubleClickTime
BeginDeferWindowPos
WindowFromPoint
GetClassNameA
EnumWindows
CheckMenuItem
GetDlgItem
GetMessageA

advapi32

RegQueryValueExA
RegDeleteValueA
QueryServiceStatus
CreateProcessAsUserA
RegOpenKeyExA
RegCloseKey
EqualSid
RegEnumValueA
RegOpenKeyA
CloseServiceHandle
StartServiceA
RegSetValueExA

comdlg32

ChooseColorA
dwLBSubclass

oleaut32

SetErrorInfo
VarBoolFromI8

ole32

CoUninitialize
CoInitialize

comctl32

ImageList_Create
ImageList_Destroy
FlatSB_SetScrollInfo
InitCommonControlsEx
ImageList_DrawEx

kernel32

ConnectNamedPipe
GetLastError
ExitProcess
CreateEventA
GetConsoleCP
IsDebuggerPresent
HeapValidate
AssignProcessToJobObject
GetProcAddress
LoadLibraryA
GetModuleHandleA
SuspendThread
LocalFlags
CloseHandle
InterlockedFlushSList
RtlCaptureContext
WriteFile

shell32

ShellExecuteExA
Shell_NotifyIconA
SHGetFileInfoA
SHGetMalloc
SHGetPathFromIDListA

Sections

.text
Size: 76KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4053e15e0130e53d5e5093114eec27c4

Headers

File Characteristics

Imports

user32

advapi32

comdlg32

oleaut32

ole32

comctl32

kernel32

shell32

Sections

.text Size: 76KB - Virtual size: 80KB

.data Size: 133KB - Virtual size: 133KB

.rdata Size: 128KB - Virtual size: 127KB

.bss Size: - Virtual size: 16KB

.idata Size: 4KB - Virtual size: 4KB

.CRT Size: 512B - Virtual size: 52B

.Tls Size: 512B - Virtual size: 32B

.rsrc Size: 44KB - Virtual size: 44KB

.text
Size: 76KB - Virtual size: 80KB

.data
Size: 133KB - Virtual size: 133KB

.rdata
Size: 128KB - Virtual size: 127KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 4KB - Virtual size: 4KB

.CRT
Size: 512B - Virtual size: 52B

.Tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 44KB - Virtual size: 44KB