f3fd84c36d56eb9d38a24a9e7b6d982f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f3fd84c36d56eb9d38a24a9e7b6d982f_JaffaCakes118
Size

769KB
MD5

f3fd84c36d56eb9d38a24a9e7b6d982f
SHA1

0e8e09d63ea68623b8dc77c47ea160c61a5685f7
SHA256

4a7c7a9dfa0fe30ae970bb65cf47883eef83949da60deae47825e6ab8bb55885
SHA512

2d9f799ec8eb1ab49d46523b4a90941d2965e4e268e0f86643d07b234cef7b70f7561f46dac5b5fa618bc7551b773290eca32e89dc673fc67349456f8063b149
SSDEEP

24576:1/ZMgd1FbzB5GDP4ClCUI6T1hXUnQwhR:11bzRJ65hXU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3fd84c36d56eb9d38a24a9e7b6d982f_JaffaCakes118

Files

f3fd84c36d56eb9d38a24a9e7b6d982f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3e027f53e1b318b1eef822142e61dac9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
GetStockObject
SelectObject
DeleteObject
CreateSolidBrush

kernel32

GetLocalTime
CreateProcessA
SizeofResource
GetDiskFreeSpaceA
GetModuleHandleW
GlobalLock
GetACP
lstrcpynA
CloseHandle
FindFirstFileA
ReadFile
GetModuleHandleA
TlsFree
MapViewOfFile
GetConsoleMode
RaiseException
FindFirstFileW
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCurrentDirectoryA
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
FileTimeToLocalFileTime
CreateProcessW
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
FindResourceW
GetConsoleCP
lstrlenA
UnmapViewOfFile
LCMapStringW
LoadLibraryExW
GetLastError
LeaveCriticalSection
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
ExpandEnvironmentStringsA
WaitForMultipleObjects
DuplicateHandle
RemoveDirectoryA
FindNextFileA
CreateFileMappingA
ResetEvent
CompareStringA
lstrcpyA
GlobalFree
FindNextFileW
lstrcmpA
CompareStringW
GetProcessHeap
GetSystemInfo
GetProcAddress
DeleteFileW
GetCPInfo
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
GetVersionExA
TlsAlloc
IsBadWritePtr
HeapCreate
QueryPerformanceCounter
SetEvent
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
InterlockedIncrement
GetCurrentThreadId
GetLocaleInfoA
CreateEventW
VirtualQuery
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
SetUnhandledExceptionFilter
CreateThread
SetFilePointer
CreateMutexA
MultiByteToWideChar
InterlockedDecrement
UnhandledExceptionFilter
LoadLibraryExA
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
VirtualProtect
GetModuleFileNameW
GetEnvironmentVariableA
SetLastError
GetCurrentThread
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
GetOEMCP
SetFileAttributesA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
InterlockedExchange
GetStringTypeA
lstrcmpiA
WideCharToMultiByte
GetTempPathA
SetStdHandle
GetLocaleInfoW
FreeEnvironmentStringsW
SetErrorMode
lstrcatA
LocalAlloc
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetExitCodeProcess
GetFileAttributesW
HeapDestroy
SetEndOfFile
GetDriveTypeA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime
ReleaseMutex
GetConsoleOutputCP
GetStdHandle
RtlUnwind
WriteFile
VirtualFree
Sleep
FindResourceA
VirtualAlloc
GetFullPathNameA
GetTickCount

advapi32

RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryInfoKeyA

version

VerQueryValueA
GetFileVersionInfoSizeA

oleaut32

VariantInit
VariantClear

ole32

CoInitialize
CoCreateInstance
CoTaskMemFree
CoUninitialize

user32

MoveWindow
SetForegroundWindow
ReleaseCapture
PostQuitMessage
IsWindow
DispatchMessageA
EndPaint
GetDC
SetCursor
CallWindowProcA
SendMessageA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
GetKeyState
GetSysColor
MessageBoxA
SetDlgItemTextA
GetFocus
EndDialog
GetDesktopWindow
TrackPopupMenu
LoadIconA
LoadCursorA
ScreenToClient
GetDlgItem
CreateWindowExA
PtInRect
GetWindowLongA
CheckMenuItem
SetWindowTextA
SetWindowLongA
PostMessageA
GetWindowRect
GetSystemMetrics
DefWindowProcA
BeginPaint
PeekMessageA
SetFocus
ReleaseDC
FillRect
SetTimer
GetSubMenu
RegisterClassA
EnableMenuItem
GetWindow
IsWindowEnabled
TranslateMessage
SetWindowPos
EnableWindow
SetCapture
ShowWindow
UpdateWindow
GetParent
DestroyWindow
ClientToScreen
GetClientRect
SendMessageW
GetCursorPos

Sections

.text
Size: 639KB - Virtual size: 638KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e027f53e1b318b1eef822142e61dac9

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

version

oleaut32

ole32

user32

Sections

.text Size: 639KB - Virtual size: 638KB

.rdata Size: 99KB - Virtual size: 98KB

.data Size: 27KB - Virtual size: 30KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 639KB - Virtual size: 638KB

.rdata
Size: 99KB - Virtual size: 98KB

.data
Size: 27KB - Virtual size: 30KB

.rsrc
Size: 3KB - Virtual size: 2KB