5f490e10d046012cb42536484ff3bfe6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f490e10d046012cb42536484ff3bfe6_JaffaCakes118
Size

197KB
MD5

5f490e10d046012cb42536484ff3bfe6
SHA1

a4642f1c60554b1f07af52409e36c30e6bae1d6a
SHA256

89df27a44c8b601bf76c547b9f663a3683cb7df28638ed77cc30803bf7d0968c
SHA512

833d76b12294593a27ae9d5afec11fbbad270d46d36ff2f8aadc8dec3c11beca5bae1ea82f0483d72a7b8ad1715bfa4a2f3da762ef15d0a9553cc4553896bf0a
SSDEEP

3072:X4GZ5LeH2YsS8zS0QgjOAcSv99+Nz9B9roSXVALdG6:X4DFZpgC0v99+l9vL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f490e10d046012cb42536484ff3bfe6_JaffaCakes118

Files

5f490e10d046012cb42536484ff3bfe6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

53ab25003d2df4a7d6a4ee0942c2e1f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
LocalFileTimeToFileTime
DosDateTimeToFileTime
CreateFileA
FreeResource
GlobalUnlock
LockResource
lstrcmpiA
SetFileTime
GetDiskFreeSpaceA
GetDriveTypeA
GetWindowsDirectoryA
GetTimeZoneInformation
GetFileAttributesA
SetFileAttributesA
CreateProcessA
WaitForSingleObject
CloseHandle
GetLastError
IsDBCSLeadByte
lstrcpynA
lstrcatA
GetTickCount
lstrlenA
FindResourceA
LoadResource
lstrcpyA
GetFullPathNameA
GetFileType
FileTimeToLocalFileTime
FileTimeToSystemTime
FindFirstFileA
LoadLibraryA
GetProcAddress
FindClose
CompareStringA
FlushFileBuffers
CompareStringW
GetStringTypeW
GetStringTypeA
VirtualAlloc
HeapReAlloc
VirtualFree
HeapSize
HeapDestroy
GetOEMCP
HeapCreate
GetCPInfo
GetEnvironmentStringsW
GetACP
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
FreeEnvironmentStringsW
GetModuleHandleA
RtlUnwind
SetEndOfFile
UnhandledExceptionFilter
GetStdHandle
SetHandleCount
SetFilePointer
WriteFile
LCMapStringW
ExitProcess
TerminateProcess
GetCurrentProcess
DeleteFileA
CreateDirectoryA
RemoveDirectoryA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetStdHandle
MoveFileA
ReadFile
GetStartupInfoA
GetCommandLineA
GetVersion
LCMapStringA
HeapAlloc
HeapFree
MultiByteToWideChar
WideCharToMultiByte

user32

MessageBoxA
ShowWindow
InvalidateRect
GetSysColor
UpdateWindow
DispatchMessageA
SetWindowTextA
PeekMessageA
LoadStringA
TranslateMessage
DestroyWindow
SendMessageA
GetDlgItem
SendDlgItemMessageA
wsprintfA
DialogBoxParamA
CharNextA
EndDialog
FindWindowA
GetSystemMetrics
CharPrevA
GetWindowRect
SetCursor
MoveWindow
PostQuitMessage
CopyRect
DefWindowProcA
GetClientRect
LoadIconA
GetWindowTextA
FillRect
CreateDialogParamA
LoadCursorA
RegisterClassA

gdi32

CreateSolidBrush
CreatePen
DeleteObject
MoveToEx
SelectObject
LineTo
ExtTextOutA
SetTextColor
SetBkColor
GetTextExtentPoint32A
RestoreDC
SaveDC

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

53ab25003d2df4a7d6a4ee0942c2e1f8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 9KB - Virtual size: 20KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 85KB - Virtual size: 84KB

.reloc Size: 23KB - Virtual size: 36KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 9KB - Virtual size: 20KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 85KB - Virtual size: 84KB

.reloc
Size: 23KB - Virtual size: 36KB