53fbf0bc025497845c4044d25ccd786b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

53fbf0bc025497845c4044d25ccd786b_JaffaCakes118
Size

712KB
MD5

53fbf0bc025497845c4044d25ccd786b
SHA1

7ec6120e96a949d046d81dc438b6f6473e547a74
SHA256

e029aa1e5d4e1146f1969e63bcd630619c42a0fedf339b19847dd3635416421e
SHA512

4d5e88ccd3fe8c9b03aa6676dceda118479859edc78b091ba4a23fc33aa0703dfe0c433106acc3ab14763498e528e36ebc6f0add491bece8340ff2957962bbf3
SSDEEP

12288:eGEoLgrCSHvCNbqSglY7pFvOVjhi80LQjrIHRZA6sBWu7JKnug2Xyyyyly:eGEKgrxPCNbsep4PUKIxm6s9C2Xyyyyc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53fbf0bc025497845c4044d25ccd786b_JaffaCakes118

Files

53fbf0bc025497845c4044d25ccd786b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2a9076b4d59f1dc793e9a031ed4eb5b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\uphusie\eqoaeeuee\jowzamj\ygoocqk\usf\uwhheast.pdb

Imports

ole32

CoRevokeClassObject
CoTaskMemFree
OleSetClipboard
StgOpenStorage
OleCreateFromData
CoRegisterClassObject
CreateBindCtx
StringFromCLSID
OleIsCurrentClipboard
OleRegGetUserType

user32

GetKeyState
IsWindowVisible
RegisterClassExW
SetWindowLongW
ShowWindow
GetForegroundWindow
IsIconic
DrawFrameControl
RegisterClipboardFormatW
GetWindowRect
IsZoomed
ReleaseDC
DestroyWindow
DeferWindowPos
MessageBoxW
GetSysColorBrush
GetMenuItemCount
ShowScrollBar
MapWindowPoints
CheckMenuItem
DestroyCursor
SetScrollPos
GetDesktopWindow
FillRect
SetWindowRgn
ScreenToClient
GetMenu
TrackPopupMenu
InvalidateRect
EnableWindow
GetMenuState
OpenClipboard
InflateRect
GetMenuItemInfoW
GetNextDlgGroupItem
GetWindowLongW
DefMDIChildProcW
SendDlgItemMessageW
MessageBoxA
GetWindowTextLengthW
InvalidateRgn
CloseClipboard
MoveWindow
AppendMenuW
CreateWindowExW
MessageBeep
SetFocus
DefWindowProcW
SendDlgItemMessageA
SubtractRect
GetDlgItemInt
DestroyAcceleratorTable
IsWindow
GetClipboardData
GetSysColor
GetCursorPos
RegisterClassW
PostQuitMessage

winmm

waveOutGetDevCapsW
waveInGetDevCapsW

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
GetFileTitleA

advapi32

RegQueryInfoKeyA
GetSidSubAuthority
RegCloseKey
RegCreateKeyA

version

VerQueryValueA
GetFileVersionInfoA

shell32

ShellExecuteA
Shell_NotifyIconA
ord155
DragQueryFileA

kernel32

FlushFileBuffers
TlsAlloc
SetHandleCount
GetProcessHeap
VirtualFree
GetModuleHandleA
HeapAlloc
GetModuleHandleW
GetSystemTimeAsFileTime
HeapReAlloc
IsValidCodePage
GetStringTypeA
RtlUnwind
InterlockedExchange
GetCommandLineW
SetStdHandle
HeapDestroy
GetLocaleInfoW
ReadFile
GetConsoleMode
IsValidLocale
RaiseException
GetOEMCP
GetStartupInfoW
GetStartupInfoA
GetStdHandle
GetTimeFormatA
FreeLibrary
GetDateFormatA
WriteConsoleA
InitializeCriticalSection
GetConsoleCP
GetConsoleOutputCP
GetEnvironmentStrings
CompareStringW
LeaveCriticalSection
LoadLibraryA
WriteFile
GetTimeZoneInformation
VirtualAlloc
GetModuleFileNameA
SetEnvironmentVariableA
UnhandledExceptionFilter
IsDebuggerPresent
GetLastError
TlsGetValue
LCMapStringA
HeapCreate
EnterCriticalSection
TerminateProcess
MultiByteToWideChar
Sleep
WriteConsoleW
LCMapStringW
GetModuleFileNameW
DeleteCriticalSection
GetCPInfo
HeapSize
InterlockedDecrement
TlsFree
GetACP
TlsSetValue
SetFilePointer
ExitProcess
SetConsoleCtrlHandler
InterlockedIncrement
SetUnhandledExceptionFilter
GetCurrentThreadId
FreeEnvironmentStringsA
CompareStringA
CreateMutexW
GetLocaleInfoA
GetStringTypeW
VirtualQuery
FreeEnvironmentStringsW
GetTickCount
CloseHandle
GetCurrentThread
GetCurrentProcessId
GetUserDefaultLCID
GetCommandLineA
SetLastError
WideCharToMultiByte
GetFileType
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcess
GetProcAddress
FatalAppExitA
GetVersionExA
CreateFileA
HeapFree

comctl32

ImageList_Destroy
ImageList_GetIcon
CreatePropertySheetPageA
ImageList_DragLeave
ImageList_Replace
ImageList_Create
ImageList_Draw
ImageList_GetIconSize
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Add
ImageList_DragEnter
DestroyPropertySheetPage
ImageList_SetBkColor
_TrackMouseEvent
PropertySheetA
ImageList_ReplaceIcon
ord17
InitCommonControlsEx
ImageList_BeginDrag

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 461KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a9076b4d59f1dc793e9a031ed4eb5b2

Headers

File Characteristics

PDB Paths

Imports

ole32

user32

winmm

comdlg32

advapi32

version

shell32

kernel32

comctl32

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 464KB - Virtual size: 461KB

.data Size: 96KB - Virtual size: 93KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 464KB - Virtual size: 461KB

.data
Size: 96KB - Virtual size: 93KB

.rsrc
Size: 40KB - Virtual size: 39KB