53d55dc4827532f0ea7138976ef6e42f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

53d55dc4827532f0ea7138976ef6e42f_JaffaCakes118
Size

504KB
MD5

53d55dc4827532f0ea7138976ef6e42f
SHA1

4e2a1405dd36c720ea811bedf192f3ee39eaad1f
SHA256

b0c0b8185aeeb02a13c971a3690f90eed905a1987fd0b840cf8d8ce084d52d4f
SHA512

8300d8b83b65ded126107bd9ff48cc9f57dc697d51c64c4d9c84e5236562f8b6d283773bc33dc2d2fc5407be3c50e99cd21b6bb783308ffcac43ac8bd7388462
SSDEEP

12288:Ox3KR8cLjSeoJXgatd3/bZMHVWanKXGN4R5kVKmvhmL:eK8g+eo9gab9WnKWy5kjQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53d55dc4827532f0ea7138976ef6e42f_JaffaCakes118

Files

53d55dc4827532f0ea7138976ef6e42f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ade5901ae86f3b735ed3bb2aed51c46f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\pkdtybcbxo\siyq

Imports

user32

MessageBoxA
CreateIcon
ShowWindow
DefWindowProcW
WaitMessage
CreateWindowExW
DestroyWindow
RegisterClassExA
RegisterClassA
SetUserObjectSecurity

comctl32

ImageList_Destroy
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_SetDragCursorImage
ImageList_SetImageCount
ImageList_DragMove
ImageList_LoadImageA
MakeDragList
ImageList_LoadImage
ImageList_SetBkColor
ImageList_GetFlags
ImageList_DragEnter
ImageList_DragShowNolock
CreateStatusWindow
ImageList_LoadImageW
CreatePropertySheetPageA
ImageList_EndDrag
ImageList_Duplicate
ImageList_SetIconSize
CreateStatusWindowW
ImageList_Add
InitCommonControlsEx

kernel32

SetStdHandle
GetCommandLineW
OpenMutexA
TlsSetValue
InterlockedExchange
WriteConsoleA
EnumSystemLocalesA
GetTimeZoneInformation
InterlockedIncrement
CompareStringA
InitializeCriticalSectionAndSpinCount
lstrlenW
FlushFileBuffers
GetCurrentProcess
CreateFileA
EnterCriticalSection
FreeLibrary
GlobalDeleteAtom
GetStringTypeA
HeapFree
GetCurrentProcessId
GetModuleHandleW
RtlUnwind
GetCommandLineA
GetStringTypeW
IsValidCodePage
GetLocaleInfoW
HeapCreate
GetNumberFormatA
TlsAlloc
MultiByteToWideChar
GetThreadSelectorEntry
GetExitCodeProcess
ExitProcess
SetHandleCount
LCMapStringW
GetEnvironmentStringsW
VirtualAlloc
WriteFile
HeapValidate
GetModuleFileNameW
ReadFile
HeapSize
VirtualQuery
SetLastError
GetDateFormatA
LeaveCriticalSection
EnumDateFormatsExW
CloseHandle
GlobalAddAtomA
GetLastError
GetLocaleInfoA
HeapReAlloc
WideCharToMultiByte
CreateMutexA
LoadLibraryA
SetSystemTime
InterlockedDecrement
GetCurrentThreadId
IsValidLocale
GetConsoleOutputCP
GetStartupInfoA
GetTickCount
GetStringTypeExA
GetModuleHandleA
GetTimeFormatA
VirtualFree
SetFilePointer
TlsFree
LoadLibraryExW
GetFileType
Sleep
GetOEMCP
GetStdHandle
TlsGetValue
GetModuleFileNameA
GetACP
HeapAlloc
DeleteCriticalSection
GetCPInfo
CompareStringW
TerminateProcess
LCMapStringA
GetConsoleCP
FreeEnvironmentStringsW
SystemTimeToFileTime
GetThreadPriorityBoost
SetConsoleCtrlHandler
GetFileAttributesExA
GetProcAddress
SetUnhandledExceptionFilter
WriteConsoleW
GetCurrentThread
GetCurrencyFormatA
UnhandledExceptionFilter
CreateEventA
GetSystemTimeAsFileTime
GetUserDefaultLCID
MoveFileExA
GetConsoleMode
SetEnvironmentVariableA
HeapDestroy
GetStartupInfoW
IsDebuggerPresent
QueryPerformanceCounter

Sections

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 204KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ade5901ae86f3b735ed3bb2aed51c46f

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

kernel32

Sections

.text Size: 166KB - Virtual size: 165KB

.rdata Size: 204KB - Virtual size: 224KB

.data Size: 115KB - Virtual size: 114KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 166KB - Virtual size: 165KB

.rdata
Size: 204KB - Virtual size: 224KB

.data
Size: 115KB - Virtual size: 114KB

.rsrc
Size: 18KB - Virtual size: 18KB