5b51a05316977ad587d621fd5ff0154f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5b51a05316977ad587d621fd5ff0154f_JaffaCakes118
Size

627KB
MD5

5b51a05316977ad587d621fd5ff0154f
SHA1

a126591c564cf50fbeb8e4a70f6a7ac7abe9ceba
SHA256

92e7db6646caf7ca6eb6d01949e813b0ebfadd8d58e3aa5906b044d483975973
SHA512

c6fc8bae43ad446b39510023b5a30c3673a33f52a287ca39e9eb09df6fd8ee2f3a804225acd4a25511a6714fb1a9f58dacc86ca8471bc4d5c8e411da03ed1cd8
SSDEEP

6144:x9MkKiYzZu8CdY07MqZCORWsna8RlYCdnXDLQpzH1PII7lgdV5wJQozFnsX6gEV1:M90wbxgj1KD1gqJCEeO0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b51a05316977ad587d621fd5ff0154f_JaffaCakes118

Files

5b51a05316977ad587d621fd5ff0154f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0d6f30d55c45ad21ec2e6a098e6a5621

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
VirtualProtect
lstrcmpiW
GetSystemTimeAsFileTime
GetProcAddress
GetVersionExA
CloseHandle
GetSystemTimeAsFileTime
GetModuleFileNameW
GetModuleFileNameA
LeaveCriticalSection
lstrlenA
QueryPerformanceCounter
Sleep
HeapFree
LoadLibraryW
GetProcAddress
FreeLibrary
InterlockedCompareExchange
LoadLibraryW
LoadLibraryA
LocalAlloc
LoadLibraryW
LocalFree
FreeLibrary
EnterCriticalSection
CloseHandle
VirtualAlloc
GetModuleHandleA
GetCurrentThreadId
VirtualAlloc
HeapFree
GetSystemTimeAsFileTime
CloseHandle
LeaveCriticalSection
VirtualProtect
GetLastError
GetVersionExA
QueryPerformanceCounter
VirtualProtect
EnterCriticalSection
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetCurrentProcess
Sleep
lstrlenA
lstrlenA
InterlockedDecrement
DeleteCriticalSection
InterlockedIncrement
GetModuleHandleA
LeaveCriticalSection
LoadLibraryW
HeapDestroy
LoadLibraryW
GetModuleHandleW
GetModuleHandleW
GetModuleFileNameA
UnhandledExceptionFilter
VirtualAlloc
LoadLibraryW
InterlockedDecrement
GetVersionExA
InterlockedDecrement
GetModuleFileNameA
VirtualProtect
InterlockedDecrement
GetSystemTimeAsFileTime
LocalFree
GetCurrentThreadId

user32

GetClientRect
SetForegroundWindow
LoadIconW
GetFocus
EndPaint
CreateWindowExW
CharNextW
GetDlgItem
SetWindowPos
MessageBoxW
GetDC
ShowWindow
CreateWindowExW
ShowWindow
DispatchMessageW
wsprintfA
GetClientRect
SendDlgItemMessageW
CreateWindowExW
IsDlgButtonChecked
DispatchMessageW
KillTimer
EnableWindow
EnableWindow
DispatchMessageW
IsDlgButtonChecked
IsWindow
LoadStringW
SendMessageW
IsDlgButtonChecked
SetForegroundWindow
EndPaint
GetDC
LoadIconW
GetDlgItem
MessageBoxW
GetParent
CharNextW
GetSysColor
SetForegroundWindow
TranslateMessage
SendMessageW
SetWindowLongW
ShowWindow
CreateWindowExW
GetClientRect
SetTimer
EnableWindow
SendDlgItemMessageW
ShowWindow
SendDlgItemMessageW
SetTimer
GetDesktopWindow
GetDC
BeginPaint
GetFocus
GetSysColor
DestroyWindow
ShowWindow
IsWindow
CreateWindowExW
SetTimer
GetWindowLongW

Sections

.text
Size: 622KB - Virtual size: 948KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d6f30d55c45ad21ec2e6a098e6a5621

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 622KB - Virtual size: 948KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 622KB - Virtual size: 948KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB