1353dfa78e4351533c13f287da051d8c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1353dfa78e4351533c13f287da051d8c_JaffaCakes118
Size

87KB
MD5

1353dfa78e4351533c13f287da051d8c
SHA1

afc3d29f078e77b2088062fb0c6403a6d258185c
SHA256

d665a6eaf5fcd9ebd32d4f00fa7e4692714752f5316bf5c896287abbd596fe27
SHA512

716c7bf74f5d99ad039d9deb71d7020c83e2ab66dc8be6208de111df96c1df2e0b1eb8720d40e72126d0e1f9f80895b6aedc2b645e6f1477a5beea6512f40445
SSDEEP

1536:YB/sFTT2dP0M87Nd4u7cR078YKjM3lbpXemMfqBWZn6UHQvWQV4a+:c/st2t0l5d4u40PllOmMyBOn6UHQvW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1353dfa78e4351533c13f287da051d8c_JaffaCakes118

Files

1353dfa78e4351533c13f287da051d8c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3fa49377633d3221e733c49ad9061ec5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
GetVersionExW
TerminateProcess
CreatePipe
PeekNamedPipe
GetExitCodeProcess
GetEnvironmentVariableW
WinExec
SetUnhandledExceptionFilter
SetErrorMode
DuplicateHandle
GetModuleFileNameA
OpenMutexA
CreateMutexW
CreateMutexA
DeviceIoControl
WaitForSingleObject
GetCurrentProcess
GetTempPathW
LoadLibraryW
HeapValidate
HeapReAlloc
HeapAlloc
HeapCreate
HeapFree
DeleteFileW
CreateDirectoryA
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualProtect
VirtualAlloc
GetCommandLineA
GetModuleHandleA
GetCurrentThreadId
MoveFileA
GetLocaleInfoA
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapSize
SetStdHandle
SetFilePointer
ReadFile
SetEndOfFile
GetSystemInfo
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
GetOEMCP
GetACP
LoadLibraryA
CreateFileA
GetStartupInfoA
GetVersionExA
ExitProcess
GetProcAddress
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
CloseHandle

user32

IsDialogMessageW
GetIconInfo
CheckDlgButton
CallNextHookEx
SendMessageA
SetWindowTextA
SetClipboardData
SendDlgItemMessageA
EndDialog
OffsetRect
CheckRadioButton
GetClipboardData
SetForegroundWindow
CheckMenuRadioItem
DispatchMessageW
DeferWindowPos
TranslateMessage
IsWindowEnabled
RegisterHotKey
GetClassNameA
GetWindowTextLengthA
SystemParametersInfoW
SetWindowsHookExA
RegisterClassExA
CloseClipboard

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fa49377633d3221e733c49ad9061ec5

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 54KB - Virtual size: 53KB

.data Size: 23KB - Virtual size: 125KB

.rsrc Size: 7KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 54KB - Virtual size: 53KB

.data
Size: 23KB - Virtual size: 125KB

.rsrc
Size: 7KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 1KB