5cf8855bddfab7befb785f808e26b143_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5cf8855bddfab7befb785f808e26b143_JaffaCakes118
Size

253KB
MD5

5cf8855bddfab7befb785f808e26b143
SHA1

1000465cf6677d89a4c8ebb4aeeecfb2214bea5a
SHA256

f67650557951aa9277dbd26e66379ae9a6ca7eb6183645b0251df572de2fa41d
SHA512

1a56b5154792d69e5cf803cd5782dd905db1d8fb9d1899b67c7caef9fba9722438b3a58314bdff20421cd53a7945530ef6c7dcc19d26d1f5640e2289f66147e6
SSDEEP

6144:Zzny/hP1DreYEbyrY4+W+fOyn6w74oHvnF7MDieDYPXiS:Zu/hNDaH4+vjsUnKDieDOXiS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cf8855bddfab7befb785f808e26b143_JaffaCakes118

Files

5cf8855bddfab7befb785f808e26b143_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bec6fac22b6383c5f721daab808abb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
SystemParametersInfoW
MessageBoxW
UnregisterHotKey
DefFrameProcW
RegisterClassExA
LoadCursorA
SendInput
OpenClipboard
EnableMenuItem
ShowWindow
LoadKeyboardLayoutA
CreateWindowExA

comctl32

InitCommonControlsEx

kernel32

FlushFileBuffers
HeapFree
SetStdHandle
ExitProcess
SetFilePointer
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetACP
UnhandledExceptionFilter
HeapCreate
LCMapStringW
InitializeCriticalSection
GetSystemTimeAsFileTime
SetHandleCount
GetStringTypeW
GetStdHandle
LeaveCriticalSection
IsValidCodePage
GetOEMCP
IsBadWritePtr
GetCurrentThread
GetProcAddress
InterlockedExchange
QueryPerformanceCounter
EnterCriticalSection
CreateMutexA
GetSystemTime
GlobalHandle
OpenMutexA
MultiByteToWideChar
WriteFile
TlsFree
GetStartupInfoA
InterlockedIncrement
GetCPInfo
WriteConsoleA
LCMapStringA
LoadLibraryA
GetTickCount
GetVersion
WaitForMultipleObjectsEx
GetLocalTime
CompareStringA
ReadFile
GetEnvironmentStringsW
GetCurrentThreadId
FindNextChangeNotification
TlsGetValue
SetLastError
GetConsoleScreenBufferInfo
HeapAlloc
FreeEnvironmentStringsW
RtlUnwind
GetCommandLineA
GetTimeZoneInformation
GetEnvironmentStrings
CommConfigDialogA
VirtualAlloc
GetModuleFileNameA
InterlockedDecrement
EnumCalendarInfoA
HeapDestroy
GetCurrentProcessId
GetFileSize
SetEnvironmentVariableA
WideCharToMultiByte
MoveFileA
DeleteCriticalSection
GetFileType
VirtualQuery
CompareStringW
VirtualFree
GetLastError
HeapReAlloc
CloseHandle
FreeEnvironmentStringsA
TlsAlloc
GetStringTypeA
TlsSetValue
WritePrivateProfileStructA

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bec6fac22b6383c5f721daab808abb1

Headers

File Characteristics

Imports

user32

comctl32

kernel32

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 10KB - Virtual size: 31KB

.data Size: 84KB - Virtual size: 84KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 10KB - Virtual size: 31KB

.data
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 6KB - Virtual size: 6KB