875dd527f3e03bf38bca7563548c10e5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

875dd527f3e03bf38bca7563548c10e5_JaffaCakes118
Size

102KB
MD5

875dd527f3e03bf38bca7563548c10e5
SHA1

4d500c700041888f93b6a4eab7f0bab4a6171203
SHA256

517472eb432dbd0be97fc0eb5075da6e13d9e7eb28e4f85e605344cbd3f5ec73
SHA512

2c12225257ebc30f85b06e8faec3b70fa336676d4650d115653a0d5d92fb0a13f8e6a2cd3fb92623251d0238760ee69fa3ae36c2a1dc22a14ca15b283d34bb2e
SSDEEP

1536:ihpn75yrBwotC0WmzAdBYE60yvBPTTRquojmhLyKikxD5RaFSd0AoJjfKRGwSeh7:097sraoCbyvNTRqTjFEvvoZKKedK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
875dd527f3e03bf38bca7563548c10e5_JaffaCakes118

Files

875dd527f3e03bf38bca7563548c10e5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2cc42b9c1ef7210d19216a86da0ae58f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClipboardFormatW
ReleaseDC
SendMessageW
SetWindowLongW
EnableWindow
MessageBoxW
SendDlgItemMessageW
LoadImageW
EndDialog
SetWindowTextW
PostMessageW
DialogBoxParamW
SetDlgItemTextW
SetFocus
InsertMenuItemW
LoadBitmapW
WinHelpW
GetParent
GetWindowLongW
LoadIconW
LoadCursorW
SystemParametersInfoW
GetDlgItemTextA
GetDlgItem
SetCursor
LoadStringW
wsprintfW
GetDC

certcli

CAEnumCertTypesForCA
CACertTypeSetSecurity
CACertTypeGetSecurity
CAAddCACertificateType
CAFreeCertTypeProperty
CAFindByName
CASetCertTypeFlags
CACloseCertType
CAUpdateCertType
CAGetCAProperty
CAFreeCAProperty
CACloseCA
CASetCertTypeKeySpec
CAFindCertTypeByName
CAGetCertTypeProperty
CAGetCertTypeExtensions
CAUpdateCA
CAGetCertTypeKeySpec
CARemoveCACertificateType
CAGetCertTypeFlags
CASetCertTypeExtension
CACreateCertType
CAFreeCertTypeExtensions
CAEnumCertTypes
CAEnumNextCertType
CASetCertTypeProperty
CAGetCertTypePropertyEx

msvcrt

_wcsupr
_wcsicmp
memmove
wcslen
mbstowcs
__RTDynamicCast
wcstoul
??2@YAPAXI@Z
_initterm
wcsstr
wcscat
_adjust_fdiv
_onexit
?terminate@@YAXXZ
_purecall
__dllonexit
wcsrchr
wcscmp
_except_handler3
malloc
wcschr
wcscpy
vswprintf
free
??1type_info@@UAE@XZ
??3@YAXPAX@Z

kernel32

OutputDebugStringA
IsBadReadPtr
LocalFree
SetUnhandledExceptionFilter
DeleteCriticalSection
GetSystemTimeAsFileTime
GlobalAlloc
lstrcmpiW
GetComputerNameW
QueryPerformanceCounter
lstrcpyW
GetSystemWindowsDirectoryW
InitializeCriticalSection
WideCharToMultiByte
GetModuleFileNameW
CloseHandle
GetEnvironmentStringsW
InterlockedDecrement
RemoveDirectoryA
GetDateFormatW
FormatMessageW
GlobalFree
GetStartupInfoA
GlobalUnlock
GetModuleHandleA
LoadLibraryW
LocalReAlloc
GetACP
InterlockedIncrement
GetSystemDefaultLangID
lstrlenW
FileTimeToLocalFileTime
CreateFileW
SetLastError
GetCurrentProcess
GlobalLock
GetTickCount
OutputDebugStringW
GetLastError
FileTimeToSystemTime

advapi32

RegDeleteValueW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cc42b9c1ef7210d19216a86da0ae58f

Headers

File Characteristics

Imports

user32

certcli

msvcrt

kernel32

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 71KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 71KB

.rsrc
Size: 23KB - Virtual size: 23KB