93b8febc0fb24afab2f8a816df698dd9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

93b8febc0fb24afab2f8a816df698dd9_JaffaCakes118
Size

101KB
MD5

93b8febc0fb24afab2f8a816df698dd9
SHA1

551aad81befd971b5a40013db57ede2cd7636f23
SHA256

f029fcc3ec57f8155483af019da8a442af9415d8e013a2d5f5b6e6257c4bdf71
SHA512

53c8f98550da9835407faa7a3cdc59b89e1f2cd56308e471829c0be47ae5259dea9d4e268c693a64ae33b36b73a52c4e2ff0c81debf33e44f5271fb40b664378
SSDEEP

1536:1B+mJnnp7QekA+DvI3se2niWpJ8Cu4h706i1gjnfFvqMEuLmWmUdz8:1Dz0euDk72nLJRnrUgLFvqME8mWmUd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93b8febc0fb24afab2f8a816df698dd9_JaffaCakes118

Files

93b8febc0fb24afab2f8a816df698dd9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

04edea626923ba29dcba600b7809c5a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAAddCACertificateType
CAGetCertTypeKeySpec
CASetCertTypeExtension
CAFreeCAProperty
CACloseCertType
CAUpdateCertType
CACreateCertType
CASetCertTypeFlags
CAEnumCertTypesForCA
CAFindByName
CACertTypeSetSecurity
CAGetCAProperty
CAGetCertTypeFlags
CAGetCertTypeExtensions
CACertTypeGetSecurity
CASetCertTypeProperty
CASetCertTypeKeySpec
CAEnumNextCertType
CARemoveCACertificateType
CACloseCA
CAUpdateCA
CAEnumCertTypes
CAGetCertTypePropertyEx
CAGetCertTypeProperty
CAFindCertTypeByName
CAFreeCertTypeExtensions
CAFreeCertTypeProperty

msvcrt

vswprintf
??1type_info@@UAE@XZ
memmove
__RTDynamicCast
free
_adjust_fdiv
_wcsupr
_initterm
wcslen
mbstowcs
wcschr
wcscat
_except_handler3
??3@YAXPAX@Z
wcscmp
wcscpy
wcstoul
?terminate@@YAXXZ
_onexit
wcsrchr
__dllonexit
??2@YAPAXI@Z
_wcsicmp
wcsstr
malloc

user32

SetDlgItemTextW
SetFocus
LoadStringW
RegisterClipboardFormatW
SendDlgItemMessageW
wsprintfW
GetDC
GetDlgItemTextA
EnableWindow
SetWindowLongW
MessageBoxW
SendMessageW
GetWindowLongW
LoadImageW
DialogBoxParamW
GetDlgItem
InsertMenuItemW
PostMessageW
SetCursor
SetWindowTextW
GetParent
SystemParametersInfoW
LoadIconW
LoadCursorW
LoadBitmapW
WinHelpW
ReleaseDC
EndDialog

kernel32

CreateFileW
lstrcpyW
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
GlobalAlloc
RemoveDirectoryA
GetCPInfo
SetUnhandledExceptionFilter
GetSystemWindowsDirectoryW
InitializeCriticalSection
GetModuleHandleA
GetTickCount
SetLastError
CloseHandle
GetSystemDefaultLangID
InterlockedDecrement
lstrcmpiW
GetStartupInfoA
QueryPerformanceCounter
GlobalLock
IsBadReadPtr
GetLastError
LocalFree
GetModuleFileNameW
GetComputerNameW
DeleteCriticalSection
GetEnvironmentStringsW
GetProcAddress
LoadLibraryW
GetCurrentProcess
FormatMessageW
InterlockedIncrement
OutputDebugStringW
OutputDebugStringA
GlobalFree
WideCharToMultiByte
LocalReAlloc
GlobalUnlock
GetDateFormatW
FileTimeToSystemTime
lstrlenW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04edea626923ba29dcba600b7809c5a9

Headers

File Characteristics

Imports

certcli

msvcrt

user32

kernel32

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 117KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 117KB

.rsrc
Size: 23KB - Virtual size: 22KB