5ce20c22915a76dddcaa10f8412c7c02_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5ce20c22915a76dddcaa10f8412c7c02_JaffaCakes118
Size

66KB
MD5

5ce20c22915a76dddcaa10f8412c7c02
SHA1

1ec10a71777d20fed3ed9bb15dd21dae5c5ba1cc
SHA256

6c6e9e1de364419caf1520f36d220aea3d23362a77fc3a192f99b8fd7c1972ea
SHA512

cae9d5075225609dca5c6b7666386aa420e4959517e9c4ac358fbba530074bb18ca4fa220c89ff562e8aa68bc97f93a115eedfd017c64c1c105002d3b50a75ae
SSDEEP

1536:pr1sCqWCDgfufPkE1h9bdta7HffeRM3kEB31CSQokHdcLf:R1sCqpkYD9bdtaT90EB3czobD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ce20c22915a76dddcaa10f8412c7c02_JaffaCakes118

Files

5ce20c22915a76dddcaa10f8412c7c02_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1972dc4bcbd6443ef59ab8b8ca970271

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
OleCreateLinkFromData
OleIsCurrentClipboard
OleMetafilePictFromIconAndLabel
CoDisconnectObject
CoCreateInstance
ReleaseStgMedium
OleUninitialize
StgOpenStorage
CoLockObjectExternal
RegisterDragDrop

kernel32

GlobalAlloc
lstrlenA
SetPriorityClass
CloseHandle
SystemTimeToFileTime
lstrcatA
GetProfileStringA
GlobalDeleteAtom
WideCharToMultiByte
lstrcmpA
Sleep
TlsAlloc
ReadFile
HeapCreate
ResumeThread
VirtualFree
IsBadReadPtr
GetCurrentThread
CreateProcessW
HeapFree
GlobalMemoryStatus
GetFileAttributesW
InterlockedDecrement

ntdll

NtReadFile
NtSetSystemInformation
NtQueryInformationFile
NtCreateTimer
ZwSetEvent
RtlCancelTimer
NtProtectVirtualMemory
RtlAddAce

advapi32

RegSetValueExA
RegQueryValueExA

user32

DrawEdge
GetDC
SystemParametersInfoA
CreateCaret
ActivateKeyboardLayout
ScreenToClient
GetForegroundWindow
DefFrameProcW
GetScrollRange
CreateMDIWindowA
GetWindowThreadProcessId
SetRectEmpty
GetSystemMetrics
IsIconic
CreateMDIWindowW
ChangeClipboardChain
UpdateWindow
DispatchMessageA
WinHelpW
ClientToScreen
GetScrollPos
ShowCaret
SetWindowLongA
UnionRect
DefWindowProcW
GetWindowLongA
GetFocus
GetParent
GetClassNameA
MoveWindow
CopyAcceleratorTableA
InvertRect
SetScrollInfo
PostMessageA
RedrawWindow
ShowCursor
SetScrollPos
ChangeDisplaySettingsExA
DestroyMenu
MessageBeep
SetFocus
DrawIcon
CreateWindowExA

gpkcutil

_FDscale
_LDscale
_FRteps
_Wcrtomb
_LExp
_LPoly
_FDnorm
_FDenorm
_Sinh
_LDenorm
_Dnorm
_Cosh
_FCosh

gdi32

DeleteObject
PlayEnhMetaFileRecord
SetViewportOrgEx
LPtoDP
SetDIBits
GetObjectA
ExtEscape
TextOutA
GetOutlineTextMetricsA
DeleteMetaFile
CombineRgn
SelectPalette
IntersectClipRect
CreateCompatibleBitmap
AnimatePalette
GetPixel
BitBlt
SetRectRgn

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1972dc4bcbd6443ef59ab8b8ca970271

Headers

DLL Characteristics

File Characteristics

Imports

ole32

kernel32

ntdll

advapi32

user32

gpkcutil

gdi32

Sections

.text Size: 17KB - Virtual size: 17KB

.data Size: 7KB - Virtual size: 6KB

.rsrc Size: 41KB - Virtual size: 60KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 41KB - Virtual size: 60KB