5ebcac95545760a6377b8f56ec247957_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5ebcac95545760a6377b8f56ec247957_JaffaCakes118
Size

498KB
MD5

5ebcac95545760a6377b8f56ec247957
SHA1

2831f78172da1fde78671897ece49041aed4ab6d
SHA256

e3428750c635c25543cbffa45b377b385d91ed71bd4982a941da0f6562a1a45a
SHA512

f15e524772db6562d4617590e92359d1397e994681fb11db0d71386fbf61d0941d8e51f4d37ad014f33dcefb7e609c9365c10cc2cb352d0c2d7321b77e103b86
SSDEEP

12288:8KvlIk+OfoJLJVdOKUkTME+NN9SwSv43Aawn:86uk+mGQKzrE/zSUpwn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ebcac95545760a6377b8f56ec247957_JaffaCakes118

Files

5ebcac95545760a6377b8f56ec247957_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a17c2dcdc8f877ee1724ee4a84bbc4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetMalloc
ExtractIconExA
ShellExecuteExA
SHUpdateRecycleBinIcon

comctl32

InitCommonControlsEx

comdlg32

FindTextA
GetSaveFileNameA

user32

MonitorFromRect
ChildWindowFromPoint
FrameRect
GetDlgCtrlID
AdjustWindowRectEx
GetMenuItemInfoA
OemToCharBuffW
SetForegroundWindow
IsIconic
RegisterClassA
RegisterClassExA
GetPriorityClipboardFormat
GetOpenClipboardWindow
LockWindowUpdate
DdeCreateDataHandle

advapi32

CryptDeriveKey
CryptImportKey
CryptSetProviderExA
CryptHashSessionKey
RegLoadKeyW
CryptDestroyKey
RegDeleteKeyW
CryptEnumProviderTypesA
RegQueryValueA
RegRestoreKeyW
CryptEnumProvidersW
DuplicateTokenEx
LookupPrivilegeValueW
CryptEnumProvidersA
RegCreateKeyA
RegQueryMultipleValuesA
RegSetValueExA
CryptVerifySignatureW
CryptHashData
CryptAcquireContextW
RegReplaceKeyA
InitiateSystemShutdownA
RegEnumKeyExA
InitiateSystemShutdownW
CryptEnumProviderTypesW

gdi32

GetFontData
GetTextExtentPointA
GetBitmapBits
StrokePath
CreatePatternBrush
GetDeviceCaps
CreateHalftonePalette
SetMagicColors
CombineRgn
GetWindowOrgEx
GetKerningPairsW
DescribePixelFormat
CreatePenIndirect
EnumICMProfilesA
GetEnhMetaFileHeader
GetCharWidth32A
GetStretchBltMode
SetBoundsRect
GetMiterLimit
ExtEscape
GetTextAlign
RectVisible
CreateBitmap
CreateDCW
Escape

kernel32

GetCalendarInfoA
TlsFree
HeapSize
IsValidCodePage
UnhandledExceptionFilter
FreeEnvironmentStringsA
TerminateProcess
DeleteCriticalSection
GetCurrentThreadId
GetTickCount
GetLocaleInfoA
WideCharToMultiByte
VirtualProtect
TlsSetValue
GetPrivateProfileSectionNamesW
GetSystemTimeAsFileTime
GetCurrentProcess
GetTimeFormatA
EnterCriticalSection
MultiByteToWideChar
GetModuleHandleA
GetCurrentThread
GetFileType
HeapCreate
ExitProcess
SetEvent
QueryPerformanceCounter
LoadLibraryA
CompareStringA
GetTimeZoneInformation
CommConfigDialogW
CloseHandle
SetLastError
HeapFree
GetStringTypeW
SetStdHandle
SetCurrentDirectoryW
SetHandleCount
CreateMutexA
LeaveCriticalSection
GetCommandLineW
GetStringTypeA
GetEnvironmentStringsW
IsValidLocale
FreeEnvironmentStringsW
GetSystemInfo
ReadFile
EnumResourceTypesW
IsBadWritePtr
VirtualAlloc
TlsGetValue
GetProcAddress
GetDateFormatA
TlsAlloc
GetACP
GetStartupInfoW
HeapDestroy
InterlockedExchange
GetCommandLineA
EnumSystemLocalesA
GetStartupInfoA
GetCurrentProcessId
RtlUnwind
GetEnvironmentStrings
SetFilePointer
GetCPInfo
GetOEMCP
GetStdHandle
GetLastError
HeapReAlloc
GetModuleFileNameA
LCMapStringA
LCMapStringW
FlushFileBuffers
GetVersionExA
InitializeCriticalSection
HeapAlloc
GetUserDefaultLCID
SetEnvironmentVariableA
WriteFile
CompareStringW
VirtualFree
VirtualQuery
OpenMutexA
GetModuleFileNameW
GetLocaleInfoW
GetConsoleCursorInfo

Sections

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a17c2dcdc8f877ee1724ee4a84bbc4a

Headers

File Characteristics

Imports

shell32

comctl32

comdlg32

user32

advapi32

gdi32

kernel32

Sections

.text Size: 164KB - Virtual size: 164KB

.rdata Size: 9KB - Virtual size: 20KB

.data Size: 314KB - Virtual size: 313KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 164KB - Virtual size: 164KB

.rdata
Size: 9KB - Virtual size: 20KB

.data
Size: 314KB - Virtual size: 313KB

.rsrc
Size: 9KB - Virtual size: 8KB