ead5a253e47d6d4c6bff7dc8198a6407_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ead5a253e47d6d4c6bff7dc8198a6407_JaffaCakes118
Size

102KB
MD5

ead5a253e47d6d4c6bff7dc8198a6407
SHA1

fc350d3b3b4ac0481f15f925ee80ede6bf45d430
SHA256

296fd72a8d512336c11ebdfa600162f939635c119bd04e344d615afd9e464cef
SHA512

5b6068698a6ec87de4ac4875a04e7dd1f9ab07e9aaf1684efdf665d3a1f1f2d6cd2a99e8cf2f44a7b65bc20f676de8c84c677dfe71c62f66153fa27c9e5c81eb
SSDEEP

3072:bVf9LE214+QrrBRDgXHH9sFcmHqWksoAtUmZD:V9LR1dSBRDwH9m7KuUm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ead5a253e47d6d4c6bff7dc8198a6407_JaffaCakes118

Files

ead5a253e47d6d4c6bff7dc8198a6407_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1c96b8fb06922d2ac874047fcab0d13d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

certcli

CAAddCACertificateType
CAFindByName
CAEnumCertTypesForCA
CAUpdateCertType
CAGetCertTypeKeySpec
CAFreeCAProperty
CARemoveCACertificateType
CAGetCAProperty
CAGetCertTypeProperty
CACloseCertType
CAEnumNextCertType
CACloseCA
CASetCertTypeKeySpec
CASetCertTypeProperty
CAGetCertTypeFlags
CAFreeCertTypeExtensions
CAEnumCertTypes
CACertTypeSetSecurity
CAUpdateCA
CACreateCertType
CACertTypeGetSecurity
CAGetCertTypeExtensions
CAGetCertTypePropertyEx
CAFreeCertTypeProperty
CASetCertTypeFlags
CASetCertTypeExtension
CAFindCertTypeByName

msvcrt

__RTDynamicCast
memmove
??2@YAPAXI@Z
??3@YAXPAX@Z
mbstowcs
_wcsupr
?terminate@@YAXXZ
wcscmp
wcslen
__dllonexit
_adjust_fdiv
wcsrchr
vswprintf
wcschr
_initterm
_onexit
free
??1type_info@@UAE@XZ
_except_handler3
wcstoul
malloc
wcscat
wcscpy
_purecall
_wcsicmp
wcsstr

user32

MessageBoxW
LoadCursorW
SendDlgItemMessageW
GetParent
DialogBoxParamW
SendMessageW
LoadIconW
PostMessageW
SetDlgItemTextW
LoadStringW
SystemParametersInfoW
SetCursor
GetDlgItemTextA
wsprintfW
WinHelpW
SetWindowTextW
EndDialog
RegisterClipboardFormatW
SetWindowLongW
InsertMenuItemW
SetFocus
GetDlgItem
ReleaseDC
GetDC
LoadImageW
GetWindowLongW
EnableWindow
LoadBitmapW

advapi32

RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
RegEnumKeyExW
RegCloseKey

kernel32

WideCharToMultiByte
GetDateFormatW
GetModuleFileNameW
RemoveDirectoryA
lstrlenW
GetStartupInfoA
GlobalUnlock
IsBadReadPtr
LocalReAlloc
GetSystemWindowsDirectoryW
DeleteCriticalSection
GetSystemDefaultLangID
SetUnhandledExceptionFilter
GetACP
FormatMessageW
SetLastError
GetEnvironmentStringsW
CloseHandle
lstrcpyW
LocalFree
lstrcmpiW
GetComputerNameW
GetTickCount
OutputDebugStringW
GlobalAlloc
GetSystemTimeAsFileTime
CreateFileW
FileTimeToLocalFileTime
LoadLibraryW
InitializeCriticalSection
FileTimeToSystemTime
GlobalFree
GlobalLock
QueryPerformanceCounter
OutputDebugStringA
GetCurrentProcess
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
GetLastError

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c96b8fb06922d2ac874047fcab0d13d

Headers

File Characteristics

Imports

certcli

msvcrt

user32

advapi32

kernel32

comctl32

Sections

.text Size: 46KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 65KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 46KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 65KB

.rsrc
Size: 24KB - Virtual size: 24KB