7e12c42e863a304987503ebaeb0ead4c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7e12c42e863a304987503ebaeb0ead4c_JaffaCakes118
Size

103KB
MD5

7e12c42e863a304987503ebaeb0ead4c
SHA1

5ff55b8619cdf135240b59135146c31f80ec69f0
SHA256

bcd009a1ed8ff52a1b256673fd5f8433f82862f2715c2d8ebed5ce338911e32a
SHA512

40bea3b4535972d4f34ea0952d6d6d8c0dfe3eec85b4dc786bf4e2909527ab7598f70f6318d9579862c5b0d1baef1dfc859e27ad18c9938790f8a9b73ac40943
SSDEEP

3072:gIqgq6oW/ZtDzQahh/1HFDJToHp/uCl0HyCy1O9O3YS:g7H6oYBr1N9StuCl0zj9O

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e12c42e863a304987503ebaeb0ead4c_JaffaCakes118

Files

7e12c42e863a304987503ebaeb0ead4c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

147626b1b1ffb907458511d3f40b79e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetDateFormatW
GetCPInfo
RemoveDirectoryA
OutputDebugStringA
CloseHandle
GetModuleHandleA
SetLastError
GlobalFree
GetComputerNameW
lstrlenW
LocalFree
SetUnhandledExceptionFilter
GlobalAlloc
InterlockedIncrement
FileTimeToSystemTime
FormatMessageW
LoadLibraryW
IsBadReadPtr
GetSystemDefaultLangID
CreateFileW
GetLastError
QueryPerformanceCounter
GetTickCount
GetStartupInfoA
GetModuleFileNameW
GetProcAddress
GetEnvironmentStringsW
GetCurrentProcess
lstrcpyW
WideCharToMultiByte
GlobalLock
OutputDebugStringW
GetSystemWindowsDirectoryW
GetSystemTimeAsFileTime
LocalReAlloc
GlobalUnlock
lstrcmpiW
InitializeCriticalSection
DeleteCriticalSection
InterlockedDecrement

msvcrt

__RTDynamicCast
_except_handler3
_adjust_fdiv
?terminate@@YAXXZ
??1type_info@@UAE@XZ
wcsstr
wcscmp
wcscpy
??3@YAXPAX@Z
_onexit
wcstoul
_wcsupr
wcscat
memmove
wcschr
wcsrchr
malloc
_initterm
_wcsicmp
vswprintf
??2@YAPAXI@Z
mbstowcs
__dllonexit
wcslen
free

user32

SystemParametersInfoW
GetDlgItem
SendDlgItemMessageW
LoadCursorW
SetFocus
MessageBoxW
ReleaseDC
LoadImageW
PostMessageW
SetWindowTextW
SetDlgItemTextW
GetDC
RegisterClipboardFormatW
EndDialog
DialogBoxParamW
GetParent
wsprintfW
EnableWindow
WinHelpW
SetCursor
SetWindowLongW
GetWindowLongW
SendMessageW
LoadBitmapW
LoadIconW
GetDlgItemTextA
LoadStringW
InsertMenuItemW

advapi32

RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyExW
RegCloseKey

certcli

CACloseCA
CAFreeCertTypeExtensions
CACreateCertType
CACertTypeGetSecurity
CASetCertTypeFlags
CAFreeCAProperty
CAEnumNextCertType
CACertTypeSetSecurity
CARemoveCACertificateType
CAGetCertTypePropertyEx
CAEnumCertTypes
CASetCertTypeProperty
CAGetCertTypeExtensions
CAFindByName
CAUpdateCertType
CAGetCertTypeKeySpec
CAAddCACertificateType
CASetCertTypeKeySpec
CACloseCertType
CAGetCertTypeFlags
CAFreeCertTypeProperty
CAEnumCertTypesForCA
CAGetCertTypeProperty
CAFindCertTypeByName
CAUpdateCA
CAGetCAProperty
CASetCertTypeExtension

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

147626b1b1ffb907458511d3f40b79e7

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

certcli

comctl32

Sections

.text Size: 49KB - Virtual size: 48KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 105KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 49KB - Virtual size: 48KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 105KB

.rsrc
Size: 23KB - Virtual size: 22KB