5cedaea9340c6610ba21f7441d7f8186_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5cedaea9340c6610ba21f7441d7f8186_JaffaCakes118
Size

176KB
MD5

5cedaea9340c6610ba21f7441d7f8186
SHA1

f0c53fb450d4aae1b05457036c8ea1fbea3a07be
SHA256

aa7ec1980b0443dc2e299e72cc6533c69c044eef4a86964e03a2c484afb5c342
SHA512

bc45002c971e9c207f6d72f0cfa10b375603a8378d917df9e42368168bbd977397b92a092c400334973c63a1c2edca971af23318ee9602967f1b5c2e4f0e95a5
SSDEEP

3072:70RKZiqVB4l1UwoTZTT9kC5J9tHO8UUNx+fsyt26A4b520mKxD:708s0Gl1yZXmC5JLO21V0LJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cedaea9340c6610ba21f7441d7f8186_JaffaCakes118

Files

5cedaea9340c6610ba21f7441d7f8186_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1cd163aaa4d9e7af0a0d115f80255050

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
IsBadWritePtr
HeapReAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
FatalAppExitA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetCommandLineW
GetLastError
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetProcessHeap
VirtualAlloc
CreateFileA
GetModuleFileNameW
WriteFile
CloseHandle
AllocConsole
GetCurrentThread
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetStringTypeW

user32

GetWindowThreadProcessId
GetDesktopWindow
PostMessageW
CallNextHookEx
SetMenuItemInfoA
GetMenuItemInfoA
GetMessageTime
SetScrollInfo
ScrollWindow
GetDlgCtrlID
GetSysColor
DrawTextW
CreateWindowExW
LockWindowUpdate
IsWindow
CallWindowProcW
EnableWindow
GetDlgItem
SetWindowLongW
GetScrollPos
EndPaint
GetWindow
GetParent
MapVirtualKeyA
GetKeyNameTextW
IsDialogMessageA
PostMessageA
SetWindowLongA
SetWindowsHookExA
GetWindowRect
GetSystemMetrics
GetForegroundWindow
GetClientRect
SendMessageW
MapWindowPoints
DestroyMenu
DefWindowProcA
DispatchMessageA
CreateDialogIndirectParamA
DialogBoxIndirectParamA
ValidateRect
InvalidateRect
BeginPaint

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
CreateServiceA
DeleteService
GetTokenInformation

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Exports

Exports

ItaOXSnekcJOhYJwlTvGunI
loscDvUXMYq
oJXvcEIpUClzdKBgCFQ
ynnOAhXatIFFF

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 469KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1cd163aaa4d9e7af0a0d115f80255050

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Exports

Exports

Sections

.text Size: 74KB - Virtual size: 73KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 59KB - Virtual size: 469KB

.text
Size: 74KB - Virtual size: 73KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 59KB - Virtual size: 469KB