5a2599b930696e79e27a19b90894580d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5a2599b930696e79e27a19b90894580d_JaffaCakes118
Size

600KB
MD5

5a2599b930696e79e27a19b90894580d
SHA1

0d1ebd4595e0960604b8e849c5df4aded3d7f4b7
SHA256

1bab2f340a62a5d06ebb2c96d47a51611d6f35b178985cd08b01bcb7b8538279
SHA512

e9f3d5ab06e3b423abbd85483f811dd92a7ef55e92df4f6262871e51d23bead098c74ee37de90292cc25cd86496a8cabea5eb3c7079d3d30dbfe1f5790f56310
SSDEEP

12288:EK1m/I2lhshFpPoqm3jG6khSyKzEXgMxpcPsDuFAZFk1A9:EKwxhOFe5PkQC5LksYAi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a2599b930696e79e27a19b90894580d_JaffaCakes118

Files

5a2599b930696e79e27a19b90894580d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

833292d0bc8219609cb6870a39efaad1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\whe

Imports

user32

OemToCharBuffW
SetDebugErrorLevel
MessageBoxA
SetShellWindow
AnyPopup
GetWindowModuleFileNameA
CountClipboardFormats
GetProcessWindowStation
GetTabbedTextExtentA
RegisterClassExA
OpenInputDesktop
DrawTextExA
ShowWindow
InSendMessageEx
SetUserObjectSecurity
RegisterClassA
CreateWindowExA
WinHelpW
SetCaretPos
DefWindowProcA
DestroyWindow
GetWindowContextHelpId
IsClipboardFormatAvailable
GetAncestor
InvalidateRect
GetClassInfoA

kernel32

GetModuleHandleA
SetConsoleOutputCP
GetCPInfo
WritePrivateProfileStructA
MultiByteToWideChar
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetVersionExA
GetFullPathNameA
GetPrivateProfileStructW
FreeEnvironmentStringsA
GlobalAddAtomA
HeapReAlloc
HeapFree
SetFileAttributesW
SetFilePointer
GetModuleFileNameA
LeaveCriticalSection
WaitNamedPipeW
InterlockedExchange
UnhandledExceptionFilter
SetStdHandle
WriteFile
TerminateProcess
LCMapStringW
GetStdHandle
CreateDirectoryExA
LoadLibraryA
InterlockedIncrement
HeapValidate
CloseHandle
VirtualFree
GetCurrentProcess
QueryPerformanceCounter
CreateMutexA
InterlockedDecrement
GetStringTypeW
SetLastError
GetModuleFileNameW
IsBadWritePtr
UnlockFileEx
TlsGetValue
OpenMutexA
HeapCreate
GlobalFix
FillConsoleOutputCharacterW
LCMapStringA
GetPrivateProfileIntA
GetCurrentThread
GetStartupInfoA
TlsFree
HeapDestroy
lstrcpyA
GetExitCodeProcess
VirtualQuery
GlobalLock
GetStartupInfoW
TlsSetValue
TerminateThread
ReadFile
HeapAlloc
SetEnvironmentVariableA
HeapLock
GetSystemTime
GetLastError
GetCommandLineW
GetProfileSectionA
GetModuleHandleW
GetCommandLineA
DeleteCriticalSection
TlsAlloc
SetCurrentDirectoryA
FlushConsoleInputBuffer
GetEnvironmentStringsW
GetCurrentProcessId
GetEnvironmentStrings
WriteConsoleOutputCharacterA
GetProcAddress
SetSystemTime
CreateProcessW
VirtualAlloc
GetTickCount
GetVersion
GetSystemDirectoryA
EnumCalendarInfoExW
lstrcatA
CreateToolhelp32Snapshot
CreateMailslotA
GetTimeFormatA
LocalUnlock
InterlockedExchangeAdd
RtlUnwind
EnumSystemCodePagesW
GetCalendarInfoA
GetLocalTime
WideCharToMultiByte
InitializeCriticalSection
SetLocaleInfoW
GetStringTypeA
ResetEvent
lstrlenA
CompareStringW
FlushFileBuffers
SetPriorityClass
FreeEnvironmentStringsW
GetCurrentThreadId
ExitProcess
SetHandleCount
GetFileType
EnterCriticalSection
LoadLibraryExW
GetTempPathW
CompareStringA

gdi32

CreateFontA
GetWindowExtEx
CreateCompatibleBitmap
PolyTextOutW

comctl32

ImageList_GetImageCount
ImageList_Destroy
InitCommonControlsEx
ImageList_GetImageRect
ImageList_Remove
ImageList_Copy
CreateToolbar
ImageList_GetDragImage
ImageList_DrawEx
ImageList_SetFilter
CreatePropertySheetPageW

Sections

.text
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

833292d0bc8219609cb6870a39efaad1

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

comctl32

Sections

.text Size: 204KB - Virtual size: 203KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 112KB - Virtual size: 125KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 204KB - Virtual size: 203KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 112KB - Virtual size: 125KB

.rsrc
Size: 24KB - Virtual size: 23KB