5ca4e05b7010e06236eeee0923f299d1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5ca4e05b7010e06236eeee0923f299d1_JaffaCakes118
Size

403KB
MD5

5ca4e05b7010e06236eeee0923f299d1
SHA1

96ea7855e822a13831877c8893fbe9ecc13a0cf0
SHA256

bf43cd0fbe4e5987063b6758799a57be29b7acc5f8491fac88b3142904b2f71b
SHA512

084f893274c3a3b17858d93ca342342ad01a0a7a10aeb113154df3527edd89f11f95f1c6f545e060c1060af6ff6aa0dbc7182a10cf6147fb3ea07a1a87c78533
SSDEEP

12288:QejQGLriY+uZ2uiXdUCqC5ILRjDpDwlG:QejhiY+uZ2uiXdVl58pkG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ca4e05b7010e06236eeee0923f299d1_JaffaCakes118

Files

5ca4e05b7010e06236eeee0923f299d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a61787737e9869eccf78c0569fbf29f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

RegisterClassA
DrawMenuBar
RegisterClassExA
AppendMenuW
EqualRect
DestroyMenu
MonitorFromWindow
DlgDirSelectExW

kernel32

GetEnvironmentStrings
GetUserDefaultLCID
WriteConsoleA
GetAtomNameA
WriteConsoleW
TlsGetValue
OpenMutexA
CloseHandle
HeapReAlloc
GetOEMCP
LocalSize
SetConsoleCtrlHandler
FreeEnvironmentStringsW
GetVersionExA
TlsAlloc
FreeLibrary
CreateDirectoryW
LCMapStringW
GetDateFormatA
LoadLibraryA
GetTimeFormatA
GlobalReAlloc
SetStdHandle
FillConsoleOutputAttribute
HeapFree
GetLastError
GetSystemTimeAsFileTime
CreateMutexA
EnterCriticalSection
CompareStringA
WriteFile
InterlockedDecrement
IsValidLocale
GetCommandLineA
InterlockedExchange
GetProcessHeap
ExitProcess
IsValidCodePage
CompareStringW
GetConsoleCP
VirtualFree
TlsSetValue
GetEnvironmentStringsW
GetConsoleMode
GetLocaleInfoW
GetCurrentProcess
InitializeCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentThreadId
SetFilePointer
InterlockedIncrement
GetStartupInfoA
VirtualAlloc
ReadConsoleInputA
RtlUnwind
GetTickCount
SetHandleCount
GetLocaleInfoA
GetStdHandle
VirtualQuery
GetTimeZoneInformation
SetLastError
WideCharToMultiByte
GetConsoleOutputCP
VirtualFreeEx
GetCurrentThread
GlobalFix
GetFileType
GetACP
LeaveCriticalSection
Sleep
FreeEnvironmentStringsA
GetModuleFileNameA
QueryPerformanceCounter
EnumSystemLocalesA
GetEnvironmentVariableA
GetModuleHandleA
HeapAlloc
LCMapStringA
EnumCalendarInfoA
GetCurrentProcessId
HeapCreate
ReadConsoleOutputAttribute
DeleteCriticalSection
HeapDestroy
SetEnvironmentVariableA
ReadFile
TerminateProcess
GetProcAddress
IsBadWritePtr
MultiByteToWideChar
IsDebuggerPresent
SetVolumeLabelA
HeapSize
CreateFileA
SystemTimeToFileTime
FlushFileBuffers
GetStringTypeA
TlsFree
GetStringTypeW
GetCPInfo

wininet

InternetOpenUrlA
InternetShowSecurityInfoByURLW
ReadUrlCacheEntryStream
FtpCommandW

comdlg32

ReplaceTextA
PageSetupDlgW
GetSaveFileNameW
GetFileTitleW

advapi32

CryptGetHashParam
RegCreateKeyExW
RegOpenKeyW
AbortSystemShutdownA
LookupPrivilegeNameA
InitiateSystemShutdownA
RegReplaceKeyW
CryptDeriveKey
CryptGenKey
CryptAcquireContextW
RegDeleteKeyW
CryptDuplicateKey
CryptHashSessionKey
RegRestoreKeyW
LookupPrivilegeDisplayNameW
LookupPrivilegeDisplayNameA
CryptContextAddRef
RegSetValueExA
RegOpenKeyA
CryptSignHashA
CreateServiceA

Sections

.text
Size: 171KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 211KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a61787737e9869eccf78c0569fbf29f

Headers

File Characteristics

Imports

comctl32

user32

kernel32

wininet

comdlg32

advapi32

Sections

.text Size: 171KB - Virtual size: 171KB

.rdata Size: 10KB - Virtual size: 38KB

.data Size: 211KB - Virtual size: 210KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 171KB - Virtual size: 171KB

.rdata
Size: 10KB - Virtual size: 38KB

.data
Size: 211KB - Virtual size: 210KB

.rsrc
Size: 9KB - Virtual size: 9KB