ff9f21f2542fc121efa20cd58aec9122_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ff9f21f2542fc121efa20cd58aec9122_JaffaCakes118
Size

102KB
MD5

ff9f21f2542fc121efa20cd58aec9122
SHA1

947b9c8d37b328276e6509d302aa4f077569d78b
SHA256

48b8ad7a33b4401346be9081e6b823f8c4261abafa2524de68ee1d7c4c517cff
SHA512

19ee35cc55f70b9508696c3fc1ce0dd125822405d435c9c75f53a8449c6e82f990429fa57aef45c653a155fa15f79b53a3398e12cb10a84e2801f0d239274bc7
SSDEEP

1536:NBJ9FQs3tMEPC+fH9hg1r8e3Oc6dY4dnH8ppAYUM7doHIm9OT4JKyKyK:NT9FL3twuO6fH8nd7doH/9AHH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff9f21f2542fc121efa20cd58aec9122_JaffaCakes118

Files

ff9f21f2542fc121efa20cd58aec9122_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e0b4e4269d235965c8440b197a245426

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringW
MessageBoxW
DialogBoxParamW
GetDlgItemTextA
InsertMenuItemW
GetDC
RegisterClipboardFormatW
SetDlgItemTextW
SetWindowTextW
SystemParametersInfoW
SendMessageW
WinHelpW
SetWindowLongW
ReleaseDC
LoadCursorW
LoadImageW
EnableWindow
GetParent
EndDialog
SetCursor
GetDlgItem
PostMessageW
LoadBitmapW
wsprintfW
SetFocus
GetWindowLongW
SendDlgItemMessageW
LoadIconW

kernel32

lstrcpyW
GetLastError
OutputDebugStringA
FormatMessageW
GetCPInfo
GetDateFormatW
GlobalLock
GetComputerNameW
GlobalUnlock
GlobalAlloc
InterlockedIncrement
DeleteCriticalSection
RemoveDirectoryA
QueryPerformanceCounter
GetModuleFileNameW
LocalReAlloc
InitializeCriticalSection
IsBadReadPtr
GetTickCount
GlobalFree
CloseHandle
GetSystemTimeAsFileTime
lstrcmpiW
GetSystemWindowsDirectoryW
FileTimeToSystemTime
GetStartupInfoA
LocalFree
WideCharToMultiByte
lstrlenW
GetCurrentProcess
FileTimeToLocalFileTime
GetProcAddress
GetEnvironmentStringsW
OutputDebugStringW
GetSystemDefaultLangID
InterlockedDecrement
SetLastError
LoadLibraryW
CreateFileW
SetUnhandledExceptionFilter
GetModuleHandleA

msvcrt

malloc
wcschr
?terminate@@YAXXZ
_initterm
__dllonexit
??1type_info@@UAE@XZ
mbstowcs
free
_adjust_fdiv
wcscpy
_onexit
wcslen
wcscmp
_wcsicmp
wcscat
wcsstr
__RTDynamicCast
wcstoul
??2@YAPAXI@Z
vswprintf
_except_handler3
??3@YAXPAX@Z
wcsrchr
_wcsupr
memmove

certcli

CASetCertTypeKeySpec
CAUpdateCA
CASetCertTypeExtension
CAEnumCertTypesForCA
CAGetCertTypeKeySpec
CAGetCertTypeFlags
CACreateCertType
CAGetCAProperty
CAFreeCertTypeProperty
CACertTypeSetSecurity
CAGetCertTypePropertyEx
CAFreeCAProperty
CARemoveCACertificateType
CAEnumNextCertType
CAUpdateCertType
CAGetCertTypeProperty
CAGetCertTypeExtensions
CAFreeCertTypeExtensions
CACloseCertType
CASetCertTypeFlags
CACloseCA
CAAddCACertificateType
CAFindCertTypeByName
CAFindByName
CASetCertTypeProperty
CACertTypeGetSecurity
CAEnumCertTypes

advapi32

RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegCreateKeyExW
RegEnumKeyExW

comctl32

CreatePropertySheetPageW
PropertySheetW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0b4e4269d235965c8440b197a245426

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

certcli

advapi32

comctl32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 16KB - Virtual size: 92KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 16KB - Virtual size: 92KB

.rsrc
Size: 24KB - Virtual size: 24KB