53cf99dab5342d5ffc5bab497920c54c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

53cf99dab5342d5ffc5bab497920c54c_JaffaCakes118
Size

148KB
MD5

53cf99dab5342d5ffc5bab497920c54c
SHA1

9562a74737771d7d35d2552b66bd10c9cc2c17ac
SHA256

ebffc4fd422dcd056636f45c06c122340f58a74abfd2710e52100a9cb43188ac
SHA512

41b704f2cce110b8283baecef269ab195e73a34ed80c6844d07fe7f2e295c6d58f453691d60e68665ff3f1f6514e315ddccb4ede7164f951b69dc319f28c9b2b
SSDEEP

3072:9i6rArRxuJTtOa5JjzFWJoYszOyUqnwLOduY:dWxu609zEXwZuY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
53cf99dab5342d5ffc5bab497920c54c_JaffaCakes118

Files

53cf99dab5342d5ffc5bab497920c54c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bb28a77fefc0a08ee68e52c46b00500

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GetCurrentDirectoryA
GetVersionExA
GetModuleHandleA
FreeLibrary
GetSystemInfo
GetCurrentProcess
LoadLibraryA
GetProcAddress
GetExitCodeThread
LoadLibraryExA
GetFullPathNameA
GetModuleFileNameA
GetSystemDefaultLangID
CreateFileA
GetWindowsDirectoryA
SetEvent
TerminateThread
CreateEventA
OpenProcess
Sleep
WaitForSingleObject
DeleteFileA
FindFirstFileA
FindClose
GetLastError
SetCurrentDirectoryA
WriteFile
LocalFree
FormatMessageA
GetLocalTime
TerminateProcess
WaitForMultipleObjects
ResetEvent
lstrcatA
IsBadStringPtrA
WideCharToMultiByte
IsBadCodePtr
FindResourceExA
FindResourceA
LoadResource
GetStartupInfoA
GetExitCodeProcess
CloseHandle
lstrcmpiA
MulDiv
lstrlenA
GetProcessHeap
HeapAlloc
HeapFree
FindNextFileA
lstrcpyA

msvcrt

_initterm
__getmainargs
_acmdln
exit
_cexit
_XcptFilter
_exit
_c_exit
_endthreadex
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_beginthreadex

user32

GetWindowRect
EndDialog
SetDlgItemTextA
GetDlgItemTextA
GetDesktopWindow
FindWindowA
wvsprintfA
GetAncestor
SetWindowPos
SetWindowTextA
GetClientRect
CreateWindowExA
GetWindowLongA
GetWindowThreadProcessId
SetWindowLongA
DestroyWindow
PostQuitMessage
IsWindowVisible
CharLowerBuffA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
LoadImageA
GetDlgItem
GetDC
DrawIcon
ReleaseDC
SendMessageA
ShowWindow
SystemParametersInfoA
MessageBoxA
LoadStringA
DialogBoxParamA
DialogBoxIndirectParamA
CreateDialogParamA
CreateDialogIndirectParamA
wsprintfA
GetForegroundWindow

shlwapi

StrToIntExA
StrCmpNIA
StrTrimA
StrToIntA
SHDeleteKeyA

setupapi

SetupFindNextMatchLineA
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
SetupGetLineByIndexA
SetupGetLineCountA
SetupFindNextLine
SetupOpenInfFileA
SetupCloseInfFile
SetupDiOpenDevRegKey
SetupDiGetClassDevsA
SetupGetFieldCount
SetupGetLineTextA
SetupGetStringFieldA
SetupFindFirstLineA
SetupGetIntField
SetupDiDestroyDeviceInfoList

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegQueryInfoKeyA

gdi32

GetDeviceCaps

comctl32

InitCommonControlsEx

shell32

ShellExecuteExA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9bb28a77fefc0a08ee68e52c46b00500

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

shlwapi

setupapi

advapi32

gdi32

comctl32

shell32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 24KB - Virtual size: 24KB

.sxdata Size: 4KB - Virtual size: 4B

.rsrc Size: 60KB - Virtual size: 60KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 24KB - Virtual size: 24KB

.sxdata
Size: 4KB - Virtual size: 4B

.rsrc
Size: 60KB - Virtual size: 60KB