53ffc7027dd6b972663bc23107bee78f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

53ffc7027dd6b972663bc23107bee78f_JaffaCakes118
Size

807KB
MD5

53ffc7027dd6b972663bc23107bee78f
SHA1

9f6a6591af8fd3456920a7da12b1670af5db99f8
SHA256

8daac4487914e2743e89a3eca8b830e7b175d73d1269e575ceb27c6a55ddcd0d
SHA512

4c4dbac8033518ac591e4585c553807c6f398b69aca83fe2220306f185e822716a4421bb44fe3d098206414258a0608a8552bdc575cfffa5b9db954f3367c8a2
SSDEEP

12288:XH0p/lwfyMZW/NVIVXqavLSZttfAKwP3qbUmr:XmdtixnvLIzfDwUD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53ffc7027dd6b972663bc23107bee78f_JaffaCakes118

Files

53ffc7027dd6b972663bc23107bee78f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f06a162dc4c0b43fdccc718b9a2d6665

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowWord
GetIconInfo
DrawCaption
GetDCEx
ScrollDC
GetMenuState
GetTitleBarInfo
GetClipboardFormatNameA
CreateCaret
GetDC
GetMessagePos
GetWindowDC
GetQueueStatus
GetWindowLongW
IsZoomed
GetDialogBaseUnits
HiliteMenuItem
SetRect
EnumThreadWindows
FindWindowExA
GetClipboardSequenceNumber
EnableWindow

comdlg32

GetOpenFileNameA
GetSaveFileNameA

gdi32

CloseMetaFile
GetAspectRatioFilterEx
SetStretchBltMode
GetDIBColorTable
PolyBezierTo
PlayEnhMetaFile
GetObjectType
GetTextMetricsW
SetSystemPaletteUse
GetICMProfileW
EndPath
CreateMetaFileA
GetCurrentPositionEx
GetViewportOrgEx
CloseEnhMetaFile
SetROP2

kernel32

GetOEMCP
IsValidCodePage
GetCPInfo
RtlUnwind
CompareStringA
MultiByteToWideChar
CompareStringW
SetEnvironmentVariableA
HeapSize
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetACP
ExitProcess
GetCommandLineW
SetStdHandle
FindNextChangeNotification
GetLastError
HeapAlloc
MapUserPhysicalPagesScatter
GlobalUnfix
GetProcessHeap
GetNamedPipeHandleStateW
ConvertFiberToThread
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetFileAttributesA
GetModuleHandleW
Sleep
GetProcAddress
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessA
LoadLibraryA
InitializeCriticalSectionAndSpinCount

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 760KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 536KB - Virtual size: 535KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f06a162dc4c0b43fdccc718b9a2d6665

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

gdi32

kernel32

Sections

.text Size: 39KB - Virtual size: 38KB

.rdata Size: 141KB - Virtual size: 141KB

.data Size: 89KB - Virtual size: 760KB

.rsrc Size: 536KB - Virtual size: 535KB

.text
Size: 39KB - Virtual size: 38KB

.rdata
Size: 141KB - Virtual size: 141KB

.data
Size: 89KB - Virtual size: 760KB

.rsrc
Size: 536KB - Virtual size: 535KB