5cfec3044fd4a2a2b54d2c9af8a4e57a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5cfec3044fd4a2a2b54d2c9af8a4e57a_JaffaCakes118
Size

571KB
MD5

5cfec3044fd4a2a2b54d2c9af8a4e57a
SHA1

6b888e26c2d0fcb3fe0f991edbf8d7fca31e7719
SHA256

de1c12aeda67ab4644b0ff9781a547f95fe4b7005b09dfc8164af834d9714c71
SHA512

bc3819eac9b45c69be0d858a05d96b1c7b66eb7d638126fd016e7937ac3caa3ad8a929c5dd607042358f8e960c3b2a5cf8391a1bb2a3f83f8e882ee856cd5bb5
SSDEEP

12288:X6y0dxp6cwX37LpYqwX1+Gam3aBeCZjSg1DUaX6:Ky0N+ull+GbaBeojSjc6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cfec3044fd4a2a2b54d2c9af8a4e57a_JaffaCakes118

Files

5cfec3044fd4a2a2b54d2c9af8a4e57a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e464c8b37501a517223eaba2daa978ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

EditWndProc
SetCapture
GetClipboardViewer
EnumDisplayDevicesA
LoadIconW
CharUpperW
GetClassNameA
GetSystemMetrics
DrawFocusRect
GetGUIThreadInfo
LoadCursorW
DdeAddData
DrawTextA
GetWindowLongW
RegisterClassA
PostMessageA
MsgWaitForMultipleObjectsEx
GetWindowPlacement
RegisterClassExA
OffsetRect
DialogBoxParamA
RemovePropA
ClipCursor

gdi32

GetWinMetaFileBits

comdlg32

GetFileTitleA

advapi32

CreateServiceA
CryptGetHashParam
LookupAccountSidW
RegOpenKeyExA
RegLoadKeyW
CryptDestroyKey
RegSaveKeyA
RegRestoreKeyW
RegEnumKeyA
RegRestoreKeyA
RegEnumKeyExW
CryptVerifySignatureW

kernel32

GetStringTypeA
HeapSize
GetStringTypeW
ExitProcess
GetCPInfo
ReadConsoleOutputCharacterA
OpenMutexA
HeapCreate
CreateMutexA
GetSystemTimeAsFileTime
InitializeCriticalSection
GetVersionExA
GetCommandLineA
GetLocaleInfoW
IsValidLocale
GetPrivateProfileIntW
TerminateProcess
VirtualFree
FileTimeToLocalFileTime
GetModuleHandleA
ReadConsoleA
LockFile
HeapAlloc
GetModuleFileNameA
CreateFileMappingA
LCMapStringA
MultiByteToWideChar
GetProcAddress
GetTimeZoneInformation
RtlUnwind
FlushFileBuffers
GetUserDefaultLCID
LocalShrink
GetLocaleInfoA
TlsFree
QueryPerformanceCounter
TlsGetValue
IsValidCodePage
SetStdHandle
GetNumberFormatW
SetEnvironmentVariableA
GetDateFormatA
SetLastError
CloseHandle
FreeEnvironmentStringsA
LeaveCriticalSection
WideCharToMultiByte
GetTimeFormatA
VirtualAlloc
FreeEnvironmentStringsW
HeapFree
InterlockedExchange
GetEnvironmentStringsW
VirtualQuery
GetCurrentProcessId
GetCurrentThread
TlsAlloc
GetSystemInfo
GetEnvironmentStrings
VirtualProtect
EnumSystemLocalesA
GetComputerNameA
FindNextFileW
GetStartupInfoA
SetHandleCount
SetConsoleCursorPosition
GetTickCount
GetThreadPriorityBoost
CompareStringA
WriteConsoleOutputAttribute
CreateThread
GetOEMCP
IsBadWritePtr
LCMapStringW
GetFileAttributesA
GetCurrentThreadId
GetStdHandle
FoldStringA
ExitThread
DeleteCriticalSection
HeapReAlloc
HeapDestroy
SetFilePointer
GetACP
WriteFile
TlsSetValue
LoadLibraryA
GetLastError
EnterCriticalSection
GetCurrentProcess
GetFileType
ReadFile
CompareStringW
UnhandledExceptionFilter

Sections

.text
Size: 231KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e464c8b37501a517223eaba2daa978ec

Headers

File Characteristics

Imports

comctl32

user32

gdi32

comdlg32

advapi32

kernel32

Sections

.text Size: 231KB - Virtual size: 231KB

.rdata Size: 8KB - Virtual size: 21KB

.data Size: 316KB - Virtual size: 316KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 231KB - Virtual size: 231KB

.rdata
Size: 8KB - Virtual size: 21KB

.data
Size: 316KB - Virtual size: 316KB

.rsrc
Size: 14KB - Virtual size: 13KB