5d461e78e58fd138d849a3b5c7b70555_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5d461e78e58fd138d849a3b5c7b70555_JaffaCakes118
Size

588KB
MD5

5d461e78e58fd138d849a3b5c7b70555
SHA1

5a3c945c3e236fa5f77e47ac64c4fb83218f583b
SHA256

1351abb4747ccc8383eb6cd63f814e223cb4af74612a75fea3af22bace68c959
SHA512

9b17d91bc54e2bfe05cf0d5b2d1ec2950ccceb2fa31e766ec7aee20dc3aed0dd35182588f4b587c393cae690b0e3a4dd088bda185438ac78c85a963082104fce
SSDEEP

12288:UattudJafrfLwQtmO19Ma6f03Ia4mRRDkJfzRFuo:Ua3udJwLwQUAD6qf4mnYrRF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d461e78e58fd138d849a3b5c7b70555_JaffaCakes118

Files

5d461e78e58fd138d849a3b5c7b70555_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1673052d24e121ecd341b302b8539572

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\sshoe\ebzofgghw\eebrsaq\peu\gpn.pdb

Imports

kernel32

WaitForMultipleObjects
HeapSize
GetStringTypeA
RtlUnwind
MoveFileExW
VirtualFree
WriteConsoleA
GetLocaleInfoW
SetUnhandledExceptionFilter
SetConsoleOutputCP
EnumSystemLocalesA
GetFileTime
SetHandleCount
GetCalendarInfoW
DosDateTimeToFileTime
MultiByteToWideChar
GetModuleFileNameA
GlobalReAlloc
IsValidCodePage
FlushFileBuffers
GetEnvironmentStrings
EnumResourceTypesA
ReadFile
GetStdHandle
GetProfileIntA
GlobalHandle
ExitProcess
TlsSetValue
GetCommandLineW
GetEnvironmentStringsW
SetLastError
VirtualAlloc
lstrcatA
TlsGetValue
Sleep
GetCurrentProcessId
GetVersionExA
WriteConsoleW
HeapDestroy
TlsFree
GetFileType
GetLocaleInfoA
GetTickCount
GetPrivateProfileSectionNamesA
FreeResource
SetStdHandle
UnhandledExceptionFilter
SetEnvironmentVariableA
FreeLibrary
FormatMessageA
VirtualQuery
WritePrivateProfileSectionA
GetSystemTimeAsFileTime
LeaveCriticalSection
GetProcessHeaps
GetCommandLineA
WideCharToMultiByte
InterlockedDecrement
GetStartupInfoA
SetThreadContext
GetConsoleMode
GetLastError
HeapReAlloc
HeapAlloc
CompareStringA
GetDateFormatA
GetUserDefaultLCID
QueryPerformanceCounter
HeapCreate
GetOEMCP
LoadLibraryA
FreeEnvironmentStringsA
IsValidLocale
GetModuleHandleA
SetEndOfFile
CreateMutexA
SetThreadAffinityMask
TerminateThread
FreeEnvironmentStringsW
GetWindowsDirectoryA
GetComputerNameA
GetCurrentThread
GetStringTypeW
GetEnvironmentVariableW
SetConsoleCtrlHandler
GetCurrentThreadId
InterlockedExchange
GetDriveTypeW
AllocConsole
LCMapStringA
EnterCriticalSection
DeleteCriticalSection
GetConsoleCP
LCMapStringW
GetProcAddress
GetTimeFormatA
SetFilePointer
TerminateProcess
InterlockedIncrement
LocalSize
CreateWaitableTimerA
GetModuleFileNameW
HeapFree
OpenMutexA
IsDebuggerPresent
TlsAlloc
CompareStringW
EnumResourceLanguagesA
CreateFileA
GetStartupInfoW
GetConsoleOutputCP
OpenEventA
FindFirstFileExW
EnumDateFormatsExA
GetCPInfo
GetProcessHeap
GetACP
DebugActiveProcess
GetProcAddress
GetTimeZoneInformation
InitializeCriticalSection
lstrlen
WriteFile
GetCurrentProcess
CloseHandle

comctl32

ImageList_Write
ImageList_SetImageCount
ImageList_Copy
InitCommonControlsEx
CreatePropertySheetPage
DrawInsert
ImageList_AddIcon
ImageList_DragLeave
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_GetFlags
ImageList_Merge
ImageList_Replace
GetEffectiveClientRect
ImageList_GetIcon
CreateUpDownControl

user32

GetAltTabInfo
DdeCreateStringHandleA
RegisterClipboardFormatW
CreateDesktopW
GetWindowLongA
ChangeDisplaySettingsA
GetKeyNameTextW
TranslateAcceleratorA
GetCaretPos
ChangeDisplaySettingsExW
CharToOemBuffW
SetMenuItemInfoW
SendDlgItemMessageW
EnumDisplayMonitors
SetClipboardViewer
FindWindowW
TranslateMessage
wsprintfA
DeferWindowPos
FindWindowA
CharUpperBuffA
SetClassLongA
MsgWaitForMultipleObjects
GetMessageA
PackDDElParam
DdeFreeDataHandle
CreateMDIWindowW
PostMessageA
GetWindowModuleFileNameW
OemToCharBuffW
DrawTextExA
GetTopWindow
EnumDisplayDevicesW
DispatchMessageA
DrawTextW
FreeDDElParam
GetForegroundWindow
CreateWindowExA
UpdateWindow
GrayStringA
MessageBeep
BeginDeferWindowPos
CreateAcceleratorTableW
GetSysColor
GetThreadDesktop
GetGuiResources
CreateWindowStationW
SetUserObjectSecurity
DefWindowProcA
ActivateKeyboardLayout
CharToOemBuffA
GetMenu
SetActiveWindow
CallMsgFilterW
TrackMouseEvent
GetSystemMetrics
EndDeferWindowPos
SetMessageExtraInfo
MessageBoxW
RegisterClassA
SetScrollRange
EnableMenuItem
ChangeDisplaySettingsExA
GetCursorPos
ShowWindow
RegisterClassExA
DestroyWindow
GetMenuItemRect
PostMessageW
EditWndProc
GetWindow
GetWindowModuleFileNameA
DispatchMessageW

Sections

.text
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1673052d24e121ecd341b302b8539572

Headers

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

Sections

.text Size: 164KB - Virtual size: 162KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 116KB - Virtual size: 129KB

.rsrc Size: 52KB - Virtual size: 51KB

.text
Size: 164KB - Virtual size: 162KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 116KB - Virtual size: 129KB

.rsrc
Size: 52KB - Virtual size: 51KB