5cdc44cd9cbee2e67eff8c240d757fb7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5cdc44cd9cbee2e67eff8c240d757fb7_JaffaCakes118
Size

146KB
MD5

5cdc44cd9cbee2e67eff8c240d757fb7
SHA1

62ed01bcf75c6c493f82e7a76fcad41a56e61402
SHA256

d0b43fbfe5ac6fad1604ffe10f2bebb7815f796afd9e7a0afe710b2bcce9d5bb
SHA512

5e8ec54326a05df7d295e78a70911b11134d72cc92c6da17cacae7754721eebae9063dc5e09a8e4d335253edcd9da2ba56ac63dcdfd89cb2730c73935d690582
SSDEEP

3072:RKgUuhOBpZyXe1DodnOq4eqEMo1waVPVu+oM9o4OMsUCGCbh97rQ90t:JDhOfZt1DodnO1kpwa9ho4OMsUCG07rD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cdc44cd9cbee2e67eff8c240d757fb7_JaffaCakes118

Files

5cdc44cd9cbee2e67eff8c240d757fb7_JaffaCakes118
.exe windows:1 windows x86 arch:x86

16c867cb8b339999f19fdb92511c463c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

comctl32

ImageList_Destroy
ImageList_DrawEx
InitCommonControlsEx

comdlg32

CommDlgExtendedError
PrintDlgW

gdi32

AbortDoc
Arc
CreateDCW
CreateFontIndirectW
CreateHatchBrush
CreatePen
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
EndDoc
EndPage
ExtTextOutW
GetCurrentObject
GetCurrentPositionEx
GetDeviceCaps
GetDIBits
GetObjectA
GetPixel
GetStockObject
GetTextExtentExPointW
GetTextExtentPoint32W
GetTextMetricsW
LineTo
MoveToEx
Pie
Polygon
Polyline
ResetDCW
RoundRect
SelectClipRgn
SelectObject
SetBkColor
SetBkMode
SetBrushOrgEx
SetPixelV
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
StartDocW
StartPage
StretchDIBits
TextOutW

kernel32

CloseHandle
CreateFileW
ExitProcess
FindClose
FlushFileBuffers
GetCommandLineW
GetFileType
GetLastError
GetLocalTime
GetModuleHandleW
GetStartupInfoA
GetVersionExA
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
MultiByteToWideChar
ReadFile
SetEndOfFile
SetErrorMode
SetFilePointer
SetLastError
SetLocalTime
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WideCharToMultiByte
WriteFile

ole32

CoInitialize
CoUninitialize

oleaut32

SysAllocStringByteLen
SysAllocStringLen
SysFreeString
VariantClear

user32

AdjustWindowRectEx
DestroyIcon
DestroyWindow
DrawIconEx
GetClientRect
GetDC
GetDlgItem
GetScrollInfo
GetSysColor
GetSystemMetrics
GetWindowLongW
GetWindowRect
InvalidateRect
LoadImageW
MapDialogRect
MessageBoxA
ReleaseDC
ScreenToClient
SendMessageA
SendMessageW
SetForegroundWindow
SetScrollInfo
UpdateWindow

winspool.drv

ClosePrinter
DeviceCapabilitiesW
DocumentPropertiesW
OpenPrinterW

ws2_32

closesocket
WSACleanup

Sections

.text
Size: 133KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.link
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16c867cb8b339999f19fdb92511c463c

Headers

File Characteristics

Imports

comctl32

comdlg32

gdi32

kernel32

ole32

oleaut32

user32

winspool.drv

ws2_32

Sections

.text Size: 133KB - Virtual size: 132KB

.data Size: 4KB - Virtual size: 6KB

.link Size: 3KB - Virtual size: 3KB

.rloc Size: 4KB - Virtual size: 4KB

.text
Size: 133KB - Virtual size: 132KB

.data
Size: 4KB - Virtual size: 6KB

.link
Size: 3KB - Virtual size: 3KB

.rloc
Size: 4KB - Virtual size: 4KB