3e525e0f981efe1fe50eafe0d076efc8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3e525e0f981efe1fe50eafe0d076efc8_JaffaCakes118
Size

2.1MB
MD5

3e525e0f981efe1fe50eafe0d076efc8
SHA1

f76a1dbd3c0fb4afb8d683184a8b07a016218bc1
SHA256

6951fd6027a0b3706f986f62f74df8abcf1179a18e11bbd7b5fb7bfc9fb4cc46
SHA512

f6c01a5f5c7c5cd3e4e0e685245b587abc6e5d37329a8ead42e8a4a7ea67ba83cd6ae945e7aee000513b3f44064fb4d0522610b4a16b323499ba1c5db66f4f89
SSDEEP

24576:kKTVozj5rbOp9j/uSPkeTbtBvdW1JOabkfi6Zdkskkhkkk6WWF:kKTV0Nqp9j/dPN1VWbkfxP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e525e0f981efe1fe50eafe0d076efc8_JaffaCakes118

Files

3e525e0f981efe1fe50eafe0d076efc8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2d1a39a7561464b69824ae61d973c611

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetFileSize
SetCommConfig
FileTimeToSystemTime
CreateEventW
GetModuleFileNameW
GetStartupInfoW
FindResourceW
ReleaseSemaphore
FindFirstFileExW
GetACP
GetThreadLocale
GetConsoleWindow
WriteConsoleW
SetFilePointerEx
SetStdHandle
GetEnvironmentStringsW
CreateFileW
VirtualAlloc
GetConsoleMode
GetConsoleCP
FlushFileBuffers
LCMapStringW
HeapSize
HeapReAlloc
HeapAlloc
GetStringTypeW
OutputDebugStringW
RtlUnwind
LoadLibraryExW
HeapFree
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetOEMCP
IsValidCodePage
IsDebuggerPresent
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
CloseHandle

mpr

WNetGetResourceInformationW
WNetEnumResourceW

advapi32

RegOpenKeyExW
RegSetValueExW

user32

DestroyCursor
GetWindowLongW
UnionRect
CopyRect
ScreenToClient
SetCursor
GetClientRect
GetWindowTextLengthW
RemovePropW
ShowScrollBar
SetScrollPos
SetForegroundWindow
GetScrollInfo
RemoveMenu
CreatePopupMenu
GetSystemMetrics
CreateAcceleratorTableW
MsgWaitForMultipleObjects
SetCapture
CharUpperW
RegisterClipboardFormatW
DialogBoxParamW
IsChild
CreateWindowExW
RegisterClassExW
DdeQueryConvInfo
DdeFreeStringHandle
DeleteMenu

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 919KB - Virtual size: 7.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lt789
Size: 258KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inos
Size: 335KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.na4m
Size: 417KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d1a39a7561464b69824ae61d973c611

Headers

File Characteristics

Imports

kernel32

mpr

advapi32

user32

Sections

.text Size: 113KB - Virtual size: 113KB

.data Size: 919KB - Virtual size: 7.8MB

.idata Size: 3KB - Virtual size: 2KB

.xdata Size: 1024B - Virtual size: 724B

.lt789 Size: 258KB - Virtual size: 257KB

.inos Size: 335KB - Virtual size: 335KB

.na4m Size: 417KB - Virtual size: 417KB

.rsrc Size: 65KB - Virtual size: 64KB

.text
Size: 113KB - Virtual size: 113KB

.data
Size: 919KB - Virtual size: 7.8MB

.idata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 1024B - Virtual size: 724B

.lt789
Size: 258KB - Virtual size: 257KB

.inos
Size: 335KB - Virtual size: 335KB

.na4m
Size: 417KB - Virtual size: 417KB

.rsrc
Size: 65KB - Virtual size: 64KB