5fa65ba150da40d3449e654ee4d0602d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5fa65ba150da40d3449e654ee4d0602d_JaffaCakes118
Size

532KB
MD5

5fa65ba150da40d3449e654ee4d0602d
SHA1

97d904f9a110e3a106dc438c8dc21a9c39f892a6
SHA256

c60fb09be802cc032e8df939d6e7f9cd0b8ddf78fb0b56b128e331d76a4494a3
SHA512

cd5bfc266e6d1196600672504853b4b06b851499dbae4cec6876650eeb2e737d7ccd88e6b94c6d3a7960796605196108a81b8f4731a68dc6487a0e130d1f0185
SSDEEP

12288:BM4cvmOv6ZPaKmraleLMUMb+Jv10fPbFmQgnGn:BxcuOGSKmrYeLMV+ZqEQgn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fa65ba150da40d3449e654ee4d0602d_JaffaCakes118

Files

5fa65ba150da40d3449e654ee4d0602d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e161ceeb38b7a1288fc50c37449b9fb4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
CreateMutexA
IsDebuggerPresent
FreeResource
SetLocaleInfoW
ReleaseSemaphore
GetCurrentProcess
SetThreadIdealProcessor
UnhandledExceptionFilter
GetProcAddress
WideCharToMultiByte
GetStringTypeA
FoldStringA
GetEnvironmentStringsW
GetConsoleOutputCP
CopyFileExA
GetUserDefaultLangID
SetStdHandle
GetCurrentProcessId
GetLocalTime
GetSystemDirectoryA
TlsFree
CompareStringA
LocalFileTimeToFileTime
Sleep
ExitProcess
LoadLibraryA
GetCommandLineA
GetProcessHeaps
GetProfileSectionW
LCMapStringW
HeapFree
GetLocaleInfoA
IsBadWritePtr
CloseHandle
GetSystemTime
GetCurrentThreadId
OpenProcess
SetFilePointer
ExpandEnvironmentStringsA
GetFileType
WaitForSingleObject
GetSystemTimeAsFileTime
FlushInstructionCache
GetDiskFreeSpaceExA
EnumResourceTypesW
LeaveCriticalSection
FindNextFileA
GetModuleFileNameW
GetStartupInfoW
FreeEnvironmentStringsA
RtlUnwind
GetStringTypeW
HeapAlloc
TlsGetValue
GetLastError
WaitCommEvent
TlsSetValue
SetHandleCount
TlsAlloc
InitializeCriticalSection
SetWaitableTimer
GetStdHandle
SystemTimeToTzSpecificLocalTime
SetLastError
GetTickCount
ReadFile
WriteProfileStringA
DeleteCriticalSection
GetEnvironmentStrings
GetShortPathNameW
GetProcessShutdownParameters
GetModuleFileNameA
FindResourceA
GlobalHandle
GetModuleHandleA
GetNamedPipeHandleStateW
VirtualQuery
GetPrivateProfileStringA
VirtualFree
EnumCalendarInfoW
FreeEnvironmentStringsW
GetThreadPriority
GetCurrentThread
HeapCreate
GetVersionExW
SetConsoleTextAttribute
OpenFileMappingA
FillConsoleOutputCharacterW
HeapReAlloc
OutputDebugStringA
lstrcmpW
MultiByteToWideChar
SetEnvironmentVariableA
QueryPerformanceCounter
GlobalAddAtomA
VirtualQueryEx
GetConsoleCP
WaitForDebugEvent
SleepEx
HeapDestroy
TerminateThread
EnumDateFormatsA
CompareStringW
GetTimeZoneInformation
WriteFile
GetStartupInfoA
TerminateProcess
GetCurrentDirectoryA
LocalFree
lstrcmpi
RtlMoveMemory
ReleaseMutex
RemoveDirectoryW
InterlockedIncrement
EnterCriticalSection
GetVersion
GetPrivateProfileIntW
GetCommandLineW
SetUnhandledExceptionFilter
GetExitCodeProcess
OpenMutexA
GetFullPathNameA
LCMapStringA
GetCPInfo
InterlockedExchange
FlushFileBuffers
InterlockedDecrement
ReadConsoleInputW
VirtualAlloc
GlobalAlloc

comctl32

ImageList_SetBkColor
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_LoadImageW
ImageList_Draw
CreateUpDownControl
InitCommonControlsEx
InitMUILanguage
ImageList_GetBkColor
ImageList_LoadImageA
ImageList_AddMasked
ImageList_SetOverlayImage
ImageList_Replace
CreateStatusWindowW
CreateMappedBitmap
ImageList_DragEnter
ImageList_GetDragImage
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_DragLeave
ImageList_Copy
ImageList_Merge
CreateStatusWindowA
ImageList_BeginDrag
ImageList_GetImageRect

user32

DlgDirListA
ScrollWindow
DialogBoxIndirectParamW
RegisterClassA
SetDeskWallpaper
UnhookWindowsHook
EnumThreadWindows
GetSysColor
VkKeyScanW
BeginPaint
UnhookWinEvent
GetClipboardFormatNameA
GetMonitorInfoA
TrackPopupMenu
DestroyWindow
LoadIconA
SetTimer
PostThreadMessageW
DlgDirSelectExA
CopyRect
RegisterClassExA
GetMenuItemInfoW
FreeDDElParam
MessageBoxA
FindWindowExW
DefWindowProcA
CreateDesktopA
GetMessageTime
SetFocus
CallMsgFilterA
DdeGetData
CreateWindowExW
IsCharAlphaNumericA
MonitorFromWindow
ShowWindow
GetClassInfoExW
DefMDIChildProcW
DestroyMenu
ScrollDC
IntersectRect
OpenWindowStationW
SendIMEMessageExA
ActivateKeyboardLayout
GetMenuItemCount
OemToCharA
CloseClipboard
GetMenuInfo

Sections

.text
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e161ceeb38b7a1288fc50c37449b9fb4

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 152KB - Virtual size: 150KB

.rdata Size: 244KB - Virtual size: 243KB

.data Size: 116KB - Virtual size: 126KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 152KB - Virtual size: 150KB

.rdata
Size: 244KB - Virtual size: 243KB

.data
Size: 116KB - Virtual size: 126KB

.rsrc
Size: 16KB - Virtual size: 12KB