f3a60e19f88f0804614bada2e4b309c7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f3a60e19f88f0804614bada2e4b309c7_JaffaCakes118
Size

181KB
MD5

f3a60e19f88f0804614bada2e4b309c7
SHA1

c7bea568cda4c0a4c8e0ffeeb7ad497328c2f299
SHA256

23f8a7dcfa7347882629363be057dd55c1b3e899f386a2effe6e9068a0cfc7f9
SHA512

0210cf3537dc41a47d16041b8bba261629101d2eb0d77f4fd9c348af14835190b61a094de844207edaea1dbff86864cb202223235736a51a148a412acfdea873
SSDEEP

3072:pccnDxWTiZYnxwcWfmjAs0cj2YemYU0VgdusbnbXgBdt2G+Z5JtioJFLiBwkNpK6:pbM2Gnxw7Or1aa9uJ8Z0oF2Bw8N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3a60e19f88f0804614bada2e4b309c7_JaffaCakes118

Files

f3a60e19f88f0804614bada2e4b309c7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

154e47d4ba493bd1cc3d966624976f76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend

user32

GetDesktopWindow
GetSystemMetrics
GetDC
CharNextW
DestroyWindow
SetWindowPos
GetWindowRect
OffsetRect
CreateWindowExA
RegisterClassA
WindowFromDC
DefWindowProcA
GetClientRect
LoadIconA
MonitorFromWindow
SetActiveWindow
GetMonitorInfoA
GetActiveWindow
LoadCursorA
MonitorFromPoint
ReleaseDC
ScrollWindowEx
EnumDisplayMonitors
UnregisterClassA

kernel32

LoadLibraryA
GlobalAlloc
GetCurrentDirectoryA
SetThreadPriority
EnterCriticalSection
GetWindowsDirectoryA
GetCalendarInfoW
GetTimeFormatW
Sleep
GetDateFormatA
LeaveCriticalSection
IsProcessorFeaturePresent
FindFirstFileA
WideCharToMultiByte
TerminateProcess
ReleaseMutex
CreateSemaphoreA
GetSystemInfo
InterlockedIncrement
CloseHandle
GetTempPathW
ExitProcess
InterlockedCompareExchange
GetCurrentProcess
GetSystemDirectoryA
CreateFileA
GetTickCount
MultiByteToWideChar
GetEnvironmentVariableW
UnhandledExceptionFilter
GetProfileStringW
GetThreadPriority
CreateMutexA
GetLocaleInfoA
GetUserDefaultLangID
ReleaseSemaphore
GetLastError
GetCurrentProcessId
TlsGetValue
TlsSetValue
IsDebuggerPresent
GlobalFree
SetCurrentDirectoryA
EnumResourceNamesA
GlobalUnlock
DeleteFileW
GetVersionExA
GetFileSize
FindNextFileA
GetCurrentThread
InitializeCriticalSection
GetModuleFileNameA
lstrcmpW
GlobalLock
GetDateFormatW
GlobalSize
GetTimeFormatA
GetLocalTime
InterlockedExchange
TlsFree
LocalAlloc
GetModuleHandleA
GetSystemTimeAsFileTime
GetFileTime
ReadFile
DeleteCriticalSection
GetThreadLocale
FreeLibrary
lstrlenW
GetProcAddress
GetACP
GetSystemDefaultLCID
FindClose
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
WaitForSingleObject
RaiseException

advapi32

RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA

ole32

CoCreateInstance
OleFlushClipboard
OleUninitialize
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
CoGetProcessIdentifier
CoFreeUnusedLibraries
CLSIDFromProgID
CoGetClassObject
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
StgOpenStorageOnILockBytes
CoInitialize
CoUninitialize
CoRevokeClassObject
CLSIDFromString

gdi32

PatBlt
ExtCreatePen
CreateCompatibleBitmap
GetRgnBox
EndDoc
StretchDIBits
GetViewportOrgEx
BitBlt
CreatePolyPolygonRgn
ExtSelectClipRgn
SelectPalette
CreatePatternBrush
StrokePath
SaveDC
CreateICW
ResetDCW
CreateBitmap
CreateDIBSection
AbortDoc
GetWorldTransform
SetGraphicsMode
OffsetRgn
StartDocW
CombineRgn
SelectObject
GetGraphicsMode
SetMiterLimit
GetDIBColorTable
SelectClipPath
MoveToEx
GetStockObject
SetBrushOrgEx
SelectClipRgn
DeleteDC
RealizePalette
CreatePalette
EndPath
GetClipBox
ModifyWorldTransform
SetWorldTransform
SetROP2
EqualRgn
PolyBezierTo
GetCurrentObject
RestoreDC
SetDIBits
StretchBlt
Rectangle
PolylineTo
BeginPath
CreateDCW
CreateCompatibleDC
LineTo
DeleteObject
StartPage
GetDeviceCaps
IntersectClipRect
CreateRectRgn
EndPage
FillPath
GetObjectA
GetRegionData
CloseFigure
SetStretchBltMode
SetPolyFillMode
ExtEscape
Escape
CreateBrushIndirect
PolyDraw

shlwapi

PathRemoveFileSpecA
PathAppendA

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

154e47d4ba493bd1cc3d966624976f76

Headers

File Characteristics

Imports

msimg32

user32

kernel32

advapi32

ole32

gdi32

shlwapi

Sections

.text Size: 99KB - Virtual size: 98KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 75KB - Virtual size: 74KB

.edata Size: 1024B - Virtual size: 240KB

.text
Size: 99KB - Virtual size: 98KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 75KB - Virtual size: 74KB

.edata
Size: 1024B - Virtual size: 240KB