7980dd3352ee756e9590689597fced6b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7980dd3352ee756e9590689597fced6b_JaffaCakes118
Size

101KB
MD5

7980dd3352ee756e9590689597fced6b
SHA1

cc950d41552f4f0ed6fcad603857721bad5bca8d
SHA256

ee1cd622c729e68346b39451dc77c7ae14bf0db9e52fc895bc7214b9b58055a5
SHA512

8d6011cd865e30026b6ae762b4dfc7ed9262662b21795a70287132390c72cf3a79e9ae79dd73bb6e16639f7aff35c4ade15cf9418123b56d86bd6ec294195bab
SSDEEP

1536:VGy11J1O9TTmj6T8GUd+P4NHVforZpaf8up1XioljCpqN8YPGXKhnnn:VX1ayj6Tudy48rZAUUdioljMlYP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7980dd3352ee756e9590689597fced6b_JaffaCakes118

Files

7980dd3352ee756e9590689597fced6b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5c1ee31b616df5585a1279b9f4aacce5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WinHelpW
RegisterClipboardFormatW
EndDialog
GetDlgItem
GetDC
LoadImageW
InsertMenuItemW
SendDlgItemMessageW
MessageBoxW
SetFocus
wsprintfW
GetDlgItemTextA
LoadBitmapW
SetWindowTextW
LoadCursorW
GetWindowLongW
GetParent
LoadStringW
SetDlgItemTextW
ReleaseDC
LoadIconW
PostMessageW
SetWindowLongW
SendMessageW
SystemParametersInfoW
EnableWindow
SetCursor
DialogBoxParamW

kernel32

IsBadReadPtr
CloseHandle
SetUnhandledExceptionFilter
FileTimeToSystemTime
InitializeCriticalSection
GetProcAddress
GetLastError
GetModuleHandleA
GlobalLock
GetSystemTimeAsFileTime
lstrlenW
lstrcmpiW
GlobalUnlock
GetStartupInfoA
LoadLibraryW
GetSystemWindowsDirectoryW
GetComputerNameW
InterlockedIncrement
GetDateFormatW
OutputDebugStringW
GetCurrentProcess
GetModuleFileNameW
GlobalAlloc
LocalReAlloc
GetCPInfo
InterlockedDecrement
DeleteCriticalSection
GetTickCount
GlobalFree
SetLastError
FileTimeToLocalFileTime
LocalFree
WideCharToMultiByte
GetSystemDefaultLangID
GetEnvironmentStringsW
RemoveDirectoryA
OutputDebugStringA
lstrcpyW
QueryPerformanceCounter
CreateFileW
FormatMessageW

msvcrt

wcscat
wcstoul
_except_handler3
??1type_info@@UAE@XZ
_adjust_fdiv
wcslen
wcsrchr
free
?terminate@@YAXXZ
_wcsicmp
vswprintf
??3@YAXPAX@Z
_onexit
wcsstr
wcschr
__dllonexit
_wcsupr
wcscmp
mbstowcs
??2@YAPAXI@Z
wcscpy
memmove
_initterm
malloc
__RTDynamicCast

certcli

CAEnumNextCertType
CACertTypeGetSecurity
CAAddCACertificateType
CAFreeCertTypeProperty
CAEnumCertTypes
CASetCertTypeExtension
CAGetCertTypeExtensions
CAFreeCertTypeExtensions
CACloseCertType
CAGetCertTypePropertyEx
CAUpdateCertType
CAGetCertTypeKeySpec
CACloseCA
CACreateCertType
CAEnumCertTypesForCA
CAGetCertTypeProperty
CASetCertTypeProperty
CAUpdateCA
CASetCertTypeFlags
CACertTypeSetSecurity
CARemoveCACertificateType
CASetCertTypeKeySpec
CAGetCAProperty
CAGetCertTypeFlags
CAFindByName
CAFindCertTypeByName
CAFreeCAProperty

advapi32

RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
RegOpenKeyExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c1ee31b616df5585a1279b9f4aacce5

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

certcli

advapi32

comctl32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 77KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 77KB

.rsrc
Size: 24KB - Virtual size: 24KB