5ccbfcd24975c6a351942f194e51493c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5ccbfcd24975c6a351942f194e51493c_JaffaCakes118
Size

335KB
MD5

5ccbfcd24975c6a351942f194e51493c
SHA1

970cc83e3ee35d7ac113f966fb18823d92fd31e8
SHA256

3f7844312a42c6d46d3770793a11f0522bf76d7e696a3f004a7f1b5d8860a4e9
SHA512

31db73b9e19acc17da2c2f11a45c11f65e373a66c051bc406954df8dbb21048ec612ff8ca4f9a2be8b9c8e8fe63541a53ea4e9a29776c12c80e015f60458d9c0
SSDEEP

6144:ZUqGZ7kDH4pBpDCYYr+5ymWSpCs0AGK7xVcOmmRw2hmUKSb:ZUq+04pBBIa55Cs0AGKlVQm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ccbfcd24975c6a351942f194e51493c_JaffaCakes118

Files

5ccbfcd24975c6a351942f194e51493c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d2c90e320230709debe4fab5ac589b4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\wkfbedmete\uhtuonsttd\pkwxxaux\eyfaehvw\bp

Imports

comdlg32

GetSaveFileNameW
GetFileTitleW
PageSetupDlgW
FindTextA

comctl32

ImageList_Merge
ImageList_SetFilter
ImageList_Draw
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_SetDragCursorImage
ImageList_LoadImage
CreateStatusWindowA
ImageList_SetOverlayImage
ImageList_Read
DrawStatusTextW
ImageList_DrawIndirect
ImageList_Create
DestroyPropertySheetPage
ImageList_GetFlags
CreateUpDownControl

shell32

SheChangeDirExW
SHQueryRecycleBinW
SheSetCurDrive

gdi32

EnumFontFamiliesExW
GetWindowOrgEx
GetBitmapBits
ScaleWindowExtEx
GetMiterLimit
CreateHalftonePalette
ResetDCW
ExtSelectClipRgn
CreateMetaFileA
AngleArc
DeviceCapabilitiesExA
CancelDC
CreateBrushIndirect
SetTextCharacterExtra
EnumEnhMetaFile
GdiPlayJournal
GetBitmapDimensionEx
SetDIBits
SetBkColor
SwapBuffers

kernel32

TlsAlloc
FreeEnvironmentStringsW
VirtualQuery
QueryPerformanceCounter
EnumResourceLanguagesA
CreateSemaphoreA
GetFileAttributesExW
HeapReAlloc
LCMapStringW
ExitProcess
GetModuleFileNameA
LCMapStringA
EnterCriticalSection
GetStartupInfoA
GetEnvironmentStrings
SetHandleCount
GetCommandLineA
GetStringTypeW
TlsFree
HeapAlloc
GetVersionExA
TlsSetValue
GetModuleFileNameW
GetConsoleTitleW
GetFileType
TerminateProcess
ContinueDebugEvent
GetLocalTime
InterlockedDecrement
LoadLibraryA
WideCharToMultiByte
GetCurrentThread
CompareStringW
HeapFree
HeapSize
SetCriticalSectionSpinCount
WriteConsoleOutputW
RtlUnwind
GetFileAttributesA
InterlockedCompareExchange
GetEnvironmentStringsW
InterlockedExchange
TlsGetValue
InitializeCriticalSection
GetDiskFreeSpaceExA
GetStartupInfoW
UnhandledExceptionFilter
DeleteCriticalSection
lstrcpyW
SetLastError
LeaveCriticalSection
VirtualAlloc
ReadFile
GetModuleHandleA
GetCommandLineW
OpenMutexA
GlobalUnlock
GetCurrentProcessId
FreeEnvironmentStringsA
GetStdHandle
GetSystemTime
WriteConsoleOutputCharacterW
WaitForSingleObjectEx
SetEnvironmentVariableA
FindAtomW
GetVersion
GetTimeZoneInformation
CompareStringA
SetVolumeLabelW
HeapDestroy
VirtualFree
SetConsoleMode
GetFileSize
GetCPInfo
GetProcAddress
SetStdHandle
InterlockedIncrement
GetLastError
FlushFileBuffers
MultiByteToWideChar
CloseHandle
GetSystemTimeAsFileTime
WriteFile
IsBadWritePtr
CreateMutexA
GetCurrentProcess
HeapCreate
GetStringTypeA
GetTickCount
GetCurrentThreadId
SetFilePointer

user32

SendMessageTimeoutW
CreateWindowExW
MessageBoxIndirectW
GetWindow
SetFocus
RegisterClassA
GrayStringW
GetUpdateRgn
EnumClipboardFormats
UpdateWindow
IsRectEmpty
DefWindowProcW
SwapMouseButton
CopyRect
DestroyWindow
InsertMenuA
SetUserObjectInformationW
ShowWindow
WINNLSGetIMEHotkey
SetUserObjectInformationA
IsCharAlphaNumericA
DialogBoxIndirectParamW
MessageBoxW
RegisterClassExA
SendIMEMessageExA
GetForegroundWindow
OffsetRect
DefWindowProcA

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2c90e320230709debe4fab5ac589b4f

Headers

File Characteristics

PDB Paths

Imports

comdlg32

comctl32

shell32

gdi32

kernel32

user32

Sections

.text Size: 169KB - Virtual size: 169KB

.rdata Size: 8KB - Virtual size: 13KB

.data Size: 84KB - Virtual size: 83KB

.rsrc Size: 73KB - Virtual size: 72KB

.text
Size: 169KB - Virtual size: 169KB

.rdata
Size: 8KB - Virtual size: 13KB

.data
Size: 84KB - Virtual size: 83KB

.rsrc
Size: 73KB - Virtual size: 72KB