5b3c55f4663d2447aa4ca6617ba2adf7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5b3c55f4663d2447aa4ca6617ba2adf7_JaffaCakes118
Size

60KB
MD5

5b3c55f4663d2447aa4ca6617ba2adf7
SHA1

fb54fe972aacfaab12a4245e4e322ea0abbea4d7
SHA256

ca0b4f5e6d15f32f4cc1765aa15d3b4cab628f19caa528d97942801709313917
SHA512

20ca9bba483eec3af82c73a1570f2ee6d0a53c6b233b61f05c9db860b58907aab4ad3598a2e9e3417646dc30cac8c742f32af68fa7c63fb3de817c14a3b827bc
SSDEEP

768:0jAoTMKC659KYylGCPt9IZDnYIrZDKHJZjJkcY/Y+4X+a+Sm4hd4xda+OrUQpHc:cAaMlJGCPtChYwZeppJv0SM9NzcUQ1c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b3c55f4663d2447aa4ca6617ba2adf7_JaffaCakes118

Files

5b3c55f4663d2447aa4ca6617ba2adf7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

149c0ede3aae7554288b6db688b55907

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PtInRect
DispatchMessageA
ChildWindowFromPointEx
SetCapture
EnableMenuItem
UnregisterClassA
GetSubMenu
AllowSetForegroundWindow
GetKeyState
DestroyMenu
GetMenuItemInfoA
GetWindowInfo
GetMenuItemInfoW
MessageBoxW
GetMenuCheckMarkDimensions
BeginPaint
EndPaint
PeekMessageA
GetFocus
FillRect
SetMenuItemBitmaps
GetWindowWord
GetMenuStringW
DrawIconEx
GetMenuStringA
SendMessageW
MessageBeep
DefWindowProcA
GetWindowRgn
OffsetRect
ClientToScreen
ReleaseCapture
DispatchMessageW
CharNextA
TrackPopupMenuEx
LoadStringW
ScreenToClient
PostMessageW
MapWindowPoints
IsIconic

kernel32

GetFileAttributesW
GetVersionExW
ReleaseMutex
FlushFileBuffers
InterlockedIncrement
TerminateProcess
GetFileType
GetFileSize
DeleteFileA
ReadFile
FreeEnvironmentStringsA
TlsSetValue
WaitForMultipleObjectsEx
SetEnvironmentVariableA
ResetEvent
GlobalUnlock
FindClose
FreeEnvironmentStringsW
LocalFree
GetModuleFileNameW
WaitForSingleObjectEx
VirtualFree
SetLastError
SetFilePointerEx
CompareStringW
CompareStringA
GetCurrentDirectoryA
GetStringTypeA
GetLocaleInfoA
InterlockedExchange
FormatMessageW
SetErrorMode
GetFileAttributesA
GetLastError
GetCurrentThreadId
VirtualAlloc
GetModuleHandleW
GetStdHandle
UnhandledExceptionFilter
GetSystemTime
SetHandleCount
SetStdHandle
CreateProcessA
ReadFileEx
CreateEventW
WriteFileEx
LockResource
SetFilePointer
CreateThread
LocalAlloc
GetStringTypeW
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
InterlockedExchangeAdd
FreeLibrary
GetThreadLocale
WriteFile
MultiByteToWideChar
CloseHandle
InitializeCriticalSection
TryEnterCriticalSection
WaitForSingleObject
FindCloseChangeNotification
RegisterWaitForSingleObject
LCMapStringW
GetVersionExA
HeapSize
SizeofResource
GetStartupInfoW
LoadResource
InterlockedDecrement
GetEnvironmentStrings
GetExitCodeProcess
SleepEx
LCMapStringA
lstrlenW
Sleep
InterlockedCompareExchange
TlsGetValue
CreateFileA
GlobalLock
RaiseException
SetEvent
DeleteFileW
TlsFree

gdi32

CreateDCA
CreateFontIndirectA
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush

setupapi

SetupRemoveSectionFromDiskSpaceListA

msvcrt

__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
_onexit

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

149c0ede3aae7554288b6db688b55907

Headers

File Characteristics

Imports

user32

kernel32

gdi32

setupapi

msvcrt

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 32KB - Virtual size: 114KB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 32KB - Virtual size: 114KB

.rsrc
Size: 12KB - Virtual size: 10KB