8fe216fd017aae4eef639e4531644e6b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8fe216fd017aae4eef639e4531644e6b_JaffaCakes118
Size

102KB
MD5

8fe216fd017aae4eef639e4531644e6b
SHA1

a2c5a3231761748613bf50e4d65ed0e6b129bdbc
SHA256

9470093d0bc54705d27187b41a1d54a6d1872db2ed84a6095a549c312d3d58c1
SHA512

282dd8e6580787e104068161efcfce82eeb717346f5358883de3d83788c23b36aa31ded778173ccc5dc5e5e9b74cf9acf2b78cdba5e6d1ba25c9e60efc975c80
SSDEEP

3072:ztPB0vuB8o1EVxEPM6bVa+GAgqc/a0IylW:zkvuBVCnEPpa+GAgqcyqlW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8fe216fd017aae4eef639e4531644e6b_JaffaCakes118

Files

8fe216fd017aae4eef639e4531644e6b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ad091d21b54e233d2913403bf62340f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAEnumCertTypes
CACertTypeSetSecurity
CACertTypeGetSecurity
CASetCertTypeKeySpec
CAAddCACertificateType
CASetCertTypeFlags
CAFreeCAProperty
CAGetCertTypeFlags
CAFindCertTypeByName
CAEnumCertTypesForCA
CAUpdateCertType
CAUpdateCA
CAFreeCertTypeExtensions
CAGetCertTypeProperty
CACloseCertType
CAGetCertTypePropertyEx
CACreateCertType
CAGetCertTypeKeySpec
CAFreeCertTypeProperty
CAFindByName
CACloseCA
CAGetCertTypeExtensions
CAGetCAProperty
CAEnumNextCertType
CASetCertTypeExtension
CARemoveCACertificateType
CASetCertTypeProperty

kernel32

GetDateFormatW
GetCPInfo
GetCurrentProcess
GlobalAlloc
GetSystemDefaultLangID
GetStartupInfoA
FormatMessageW
OutputDebugStringA
LocalFree
CloseHandle
OutputDebugStringW
FileTimeToSystemTime
lstrcmpiW
WideCharToMultiByte
GetEnvironmentStringsW
GlobalLock
CreateFileW
GetProcAddress
GetModuleFileNameW
LoadLibraryW
GetTickCount
InterlockedDecrement
GetModuleHandleA
SetLastError
GetComputerNameW
GlobalUnlock
QueryPerformanceCounter
DeleteCriticalSection
GetCurrentThread
IsBadReadPtr
lstrlenW
lstrcpyW
LocalReAlloc
GetSystemWindowsDirectoryW
GlobalFree
FileTimeToLocalFileTime
SetUnhandledExceptionFilter
InterlockedIncrement
InitializeCriticalSection
GetSystemTimeAsFileTime
GetLastError

advapi32

RegEnumKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW

msvcrt

wcsstr
_except_handler3
??2@YAPAXI@Z
wcsrchr
_initterm
vswprintf
_adjust_fdiv
wcscpy
malloc
wcslen
mbstowcs
_onexit
wcstoul
_wcsupr
__RTDynamicCast
free
??1type_info@@UAE@XZ
memmove
__dllonexit
wcschr
?terminate@@YAXXZ
??3@YAXPAX@Z
wcscmp
wcscat
_wcsicmp

user32

wsprintfW
MessageBoxW
DialogBoxParamW
SetWindowTextW
GetDC
ReleaseDC
LoadIconW
SendDlgItemMessageW
SetDlgItemTextW
InsertMenuItemW
SystemParametersInfoW
LoadCursorW
GetParent
WinHelpW
SendMessageW
LoadImageW
GetDlgItem
RegisterClipboardFormatW
SetCursor
LoadStringW
PostMessageW
SetFocus
SetWindowLongW
LoadBitmapW
GetWindowLongW
GetDlgItemTextA
EnableWindow
EndDialog

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad091d21b54e233d2913403bf62340f9

Headers

File Characteristics

Imports

certcli

kernel32

advapi32

msvcrt

user32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 101KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 101KB

.rsrc
Size: 24KB - Virtual size: 23KB