6553de871ca4d24540d55656868603f5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6553de871ca4d24540d55656868603f5_JaffaCakes118
Size

100KB
MD5

6553de871ca4d24540d55656868603f5
SHA1

7a676cf5c3625c3a3cc57242cf0521e5ab4ba867
SHA256

7f0e517f40decc04d12ba78d4b2d4cf2e52e7f340e412e8ea438cf0cf5329311
SHA512

3f7c209ceb41a322c2239b061f4edfcf1e5db6ead2078739bec4354ba465dd1b77f626b70101a5322dd415f30a915aec55cff5e4f5dc36c66cfd4ff20b1af56b
SSDEEP

3072:GdHvAsnDXZLWt/8tclh6+r0t2oyAT8NEL:GdHvAqX8tEtmM+ot2oys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6553de871ca4d24540d55656868603f5_JaffaCakes118

Files

6553de871ca4d24540d55656868603f5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a803249dc74d9bca7238e8a9f2661d3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CACertTypeGetSecurity
CAEnumNextCertType
CASetCertTypeKeySpec
CASetCertTypeFlags
CAFreeCertTypeProperty
CAEnumCertTypes
CAUpdateCA
CAGetCertTypePropertyEx
CAAddCACertificateType
CAGetCAProperty
CAGetCertTypeFlags
CACertTypeSetSecurity
CAFindCertTypeByName
CASetCertTypeExtension
CAGetCertTypeExtensions
CAUpdateCertType
CACloseCA
CACloseCertType
CASetCertTypeProperty
CAFindByName
CAFreeCertTypeExtensions
CAFreeCAProperty
CACreateCertType
CAGetCertTypeKeySpec
CAEnumCertTypesForCA
CARemoveCACertificateType
CAGetCertTypeProperty

kernel32

GlobalUnlock
CloseHandle
FileTimeToSystemTime
GlobalFree
OutputDebugStringW
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
IsBadReadPtr
GetModuleHandleA
GetCurrentThread
InterlockedDecrement
GetModuleFileNameW
lstrcpyW
GetSystemDefaultLangID
GetProcAddress
GetCurrentProcess
GlobalLock
lstrlenW
DeleteCriticalSection
GetComputerNameW
lstrcmpiW
SetLastError
OutputDebugStringA
GetTickCount
CreateFileW
FormatMessageW
LoadLibraryW
LocalReAlloc
InterlockedIncrement
QueryPerformanceCounter
InitializeCriticalSection
FileTimeToLocalFileTime
GetCPInfo
GetStartupInfoA
GetLastError
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetDateFormatW
LocalFree
WideCharToMultiByte
GlobalAlloc

advapi32

RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCloseKey
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW

user32

DialogBoxParamW
SystemParametersInfoW
LoadIconW
LoadImageW
GetParent
SetCursor
SetDlgItemTextW
SetWindowTextW
SetFocus
SendDlgItemMessageW
SetWindowLongW
EndDialog
WinHelpW
RegisterClipboardFormatW
GetWindowLongW
GetDlgItem
LoadStringW
GetDC
InsertMenuItemW
LoadBitmapW
ReleaseDC
EnableWindow
PostMessageW
LoadCursorW
GetDlgItemTextA
MessageBoxW
SendMessageW
wsprintfW

msvcrt

free
_wcsicmp
??1type_info@@UAE@XZ
memmove
_adjust_fdiv
??3@YAXPAX@Z
??2@YAPAXI@Z
__RTDynamicCast
__dllonexit
wcsrchr
malloc
mbstowcs
wcschr
vswprintf
_except_handler3
wcsstr
?terminate@@YAXXZ
_wcsupr
wcslen
wcscmp
_onexit
wcscpy
wcstoul
_initterm
wcscat

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a803249dc74d9bca7238e8a9f2661d3c

Headers

File Characteristics

Imports

certcli

kernel32

advapi32

user32

msvcrt

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 125KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 125KB

.rsrc
Size: 23KB - Virtual size: 22KB