5c7f72540df61f7e41b8975c9b8939eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5c7f72540df61f7e41b8975c9b8939eb_JaffaCakes118
Size

620KB
MD5

5c7f72540df61f7e41b8975c9b8939eb
SHA1

68c84ac89f637c52f2cf4db325d9d9b3efb011ff
SHA256

3b77fa0ff17f6c454d83fe953257bad661550a60083df4d125e9bb0c5bb1bd1d
SHA512

349a9071277c7e2161c9dd6a81226b41510f6cfe79534d7b31269c40fd5fd98ea43f34591f6fbed9fd50554e9ce2d6420bae3383f77354470cc587c9f0088428
SSDEEP

12288:Vk3tC6bVmt9NBJENxUWaUA14j/8WevLtSAzInBNHW:V96bVmt9wUWajCjssjrW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c7f72540df61f7e41b8975c9b8939eb_JaffaCakes118

Files

5c7f72540df61f7e41b8975c9b8939eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1440f7de3f9e2c14a3585596d7037b3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExW
GrayStringA
ShowOwnedPopups
IsWindow
DrawMenuBar
MapVirtualKeyA
AppendMenuA
DefMDIChildProcA
SetClassLongW
GetPropW
MessageBoxW
ShowWindow
LoadImageA
RegisterClassExA
IsWindowVisible
ShowScrollBar
GetWindowModuleFileNameW
SetMessageExtraInfo
SetWindowPos
RegisterWindowMessageW
OpenIcon
ChangeMenuA
WinHelpA
GetTabbedTextExtentA
FindWindowW
SetPropA
LoadImageW
ScrollWindow
GetScrollRange
FindWindowExW
IsChild
SetRect
GetMenuState
CheckRadioButton
InSendMessage
RegisterClassA
PostMessageW
OffsetRect
GetWindowDC
SwitchToThisWindow
GetNextDlgGroupItem
CharNextW
SetDlgItemTextW
ExitWindowsEx
GetLastActivePopup
AnyPopup
SystemParametersInfoW
PeekMessageW
InvertRect
GetWindowInfo
DeferWindowPos
PtInRect
UnionRect
IsDlgButtonChecked
SetUserObjectInformationA
TranslateAcceleratorW
GetProcessWindowStation
MessageBoxA
RealGetWindowClass
DeleteMenu
DdeAddData
GetKeyboardState
DestroyWindow
UnregisterClassA
MenuItemFromPoint
SetCaretBlinkTime
IsCharLowerA
CreateIcon
DrawStateA
GetWindowLongA
DefWindowProcW
DrawFocusRect
SetMessageQueue
DdeConnectList
DlgDirListComboBoxA

wininet

FindNextUrlCacheContainerW

comctl32

DrawStatusText
InitCommonControlsEx

kernel32

GetConsoleOutputCP
GetThreadTimes
LocalFree
HeapSize
GetCurrentThreadId
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetOEMCP
UnhandledExceptionFilter
GetStdHandle
MultiByteToWideChar
SetConsoleCtrlHandler
GetEnvironmentStringsW
GetEnvironmentStringsA
EnumResourceNamesA
GetEnvironmentStrings
GetLocaleInfoA
HeapDestroy
GetStringTypeA
GetCommandLineA
LoadModule
InterlockedDecrement
LCMapStringW
GetCPInfo
WriteConsoleA
Sleep
CloseHandle
TlsAlloc
GetStartupInfoA
GetConsoleCP
InitializeCriticalSectionAndSpinCount
FreeLibrary
GetACP
GetLastError
IsDebuggerPresent
HeapReAlloc
WriteFile
GetCurrentProcessId
LocalShrink
WriteConsoleOutputAttribute
SetUnhandledExceptionFilter
RtlUnwind
HeapAlloc
LoadLibraryA
VirtualQuery
SetLastError
CreateProcessW
GetTimeZoneInformation
FreeEnvironmentStringsA
EnterCriticalSection
HeapFree
lstrcpy
GetTickCount
VirtualAlloc
GetTimeFormatA
WideCharToMultiByte
InterlockedExchange
FlushFileBuffers
TerminateProcess
GetLocaleInfoW
CompareStringA
GetExitCodeThread
GetThreadSelectorEntry
QueryPerformanceCounter
CompareStringW
IsValidLocale
FreeEnvironmentStringsW
GetModuleHandleA
DeleteCriticalSection
GetModuleHandleW
FillConsoleOutputCharacterA
SetHandleCount
IsValidCodePage
SetFilePointer
CreateFileA
EnumTimeFormatsW
VirtualFree
GetSystemDirectoryA
GetConsoleMode
GetCurrentProcess
CreateEventA
GetFullPathNameW
TransmitCommChar
TlsGetValue
WriteConsoleW
SetEnvironmentVariableA
SetFileAttributesW
GetCurrentThread
LoadResource
GetStringTypeW
InterlockedIncrement
GetModuleFileNameA
ReadFile
GetFileType
HeapCreate
DebugActiveProcess
TlsSetValue
GetDateFormatA
OpenMutexA
GetProcAddress
LeaveCriticalSection
EnumResourceTypesW
CreateMutexA
ExitProcess
EnumSystemLocalesA
VirtualLock
TlsFree
LCMapStringA
SetConsoleTextAttribute
SetStdHandle

Sections

.text
Size: 228KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1440f7de3f9e2c14a3585596d7037b3b

Headers

File Characteristics

Imports

user32

wininet

comctl32

kernel32

Sections

.text Size: 228KB - Virtual size: 225KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 116KB - Virtual size: 124KB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 228KB - Virtual size: 225KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 116KB - Virtual size: 124KB

.rsrc
Size: 12KB - Virtual size: 8KB