d5c63260e7ff90078f7db9ea67659ed3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d5c63260e7ff90078f7db9ea67659ed3_JaffaCakes118
Size

101KB
MD5

d5c63260e7ff90078f7db9ea67659ed3
SHA1

0eebc902bc2d0ead9752e76a7deffe7bdbbbed21
SHA256

cf3da7e9a9f5e82a54e062761830d651cac1e061e60f81d74bb274d593b8bc57
SHA512

1d9168d24bfc498ef6f55f838681b626084b2728b700cc777de8294bdea506f158441f52a6a1a701ee5c77f391fc7789fbe835261ac7eca38ec54a30ab6226b7
SSDEEP

1536:dZwe8BDLfF4V0m8ktnjUDZffTizMHsJKKqGT3sZzL/XX6C6c:dqDLN4V0mNnjgBmzMHskKLsZHXd6c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5c63260e7ff90078f7db9ea67659ed3_JaffaCakes118

Files

d5c63260e7ff90078f7db9ea67659ed3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a759544e13bc1e91e583f0afd9102231

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemTextA
EnableWindow
GetDlgItem
LoadIconW
SetWindowLongW
LoadImageW
SetCursor
GetParent
LoadStringW
SetFocus
InsertMenuItemW
EndDialog
SetWindowTextW
PostMessageW
WinHelpW
RegisterClipboardFormatW
SendMessageW
MessageBoxW
GetWindowLongW
wsprintfW
DialogBoxParamW
ReleaseDC
SetDlgItemTextW
GetDC
SystemParametersInfoW
LoadBitmapW
LoadCursorW
SendDlgItemMessageW

msvcrt

wcsstr
wcschr
_onexit
vswprintf
??2@YAPAXI@Z
wcscmp
_wcsicmp
__RTDynamicCast
wcstoul
mbstowcs
??1type_info@@UAE@XZ
??3@YAXPAX@Z
__dllonexit
memmove
wcscpy
_adjust_fdiv
_purecall
?terminate@@YAXXZ
_initterm
_wcsupr
malloc
wcscat
_except_handler3
free
wcsrchr
wcslen

certcli

CACertTypeGetSecurity
CACreateCertType
CAFindCertTypeByName
CASetCertTypeFlags
CAGetCertTypeProperty
CACertTypeSetSecurity
CASetCertTypeProperty
CASetCertTypeKeySpec
CAEnumNextCertType
CAFreeCertTypeExtensions
CAGetCertTypeKeySpec
CAEnumCertTypesForCA
CACloseCertType
CARemoveCACertificateType
CAGetCertTypePropertyEx
CACloseCA
CAGetCertTypeExtensions
CAFindByName
CAUpdateCA
CAGetCertTypeFlags
CAUpdateCertType
CASetCertTypeExtension
CAEnumCertTypes
CAAddCACertificateType
CAGetCAProperty
CAFreeCertTypeProperty
CAFreeCAProperty

kernel32

FileTimeToSystemTime
GetCurrentProcess
lstrcpyW
SetLastError
GetModuleHandleA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetSystemWindowsDirectoryW
LocalReAlloc
GetACP
InterlockedIncrement
GetModuleFileNameW
QueryPerformanceCounter
FormatMessageW
FileTimeToLocalFileTime
lstrlenW
GlobalUnlock
RemoveDirectoryA
CreateFileW
DeleteCriticalSection
OutputDebugStringA
GetDateFormatW
GetSystemDefaultLangID
GlobalLock
CloseHandle
GetTickCount
GetComputerNameW
GetSystemTimeAsFileTime
IsBadReadPtr
InitializeCriticalSection
InterlockedDecrement
WideCharToMultiByte
GetLastError
GlobalAlloc
GlobalFree
LoadLibraryW
GetStartupInfoA
lstrcmpiW
LocalFree
OutputDebugStringW

advapi32

RegDeleteValueW
RegEnumKeyExW
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW

comctl32

PropertySheetW
CreatePropertySheetPageW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a759544e13bc1e91e583f0afd9102231

Headers

File Characteristics

Imports

user32

msvcrt

certcli

kernel32

advapi32

comctl32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 67KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 67KB

.rsrc
Size: 24KB - Virtual size: 24KB