3eec171b78a5b4379e93ff132a8eed99_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3eec171b78a5b4379e93ff132a8eed99_JaffaCakes118
Size

2.3MB
MD5

3eec171b78a5b4379e93ff132a8eed99
SHA1

24c6b63485aaa2f3ecfb6c9017ab5ee5926530fe
SHA256

414a9aa4d05730142a8ed588492bd68770fe18a8c68e7058c0d448eba3df3a4d
SHA512

66258b995e511a2a6de6f1c79a27bdce9fba7de34197ea18329e237a604f9ed4dd507fe1c7ab4b899c14c0f6475798fd45fc04bd96c94067393f92bb3e81501a
SSDEEP

49152:TiMKr8p3SrMwCvLS2sOs8QJrR6B86jLLTLLLLjd:TSrIiLx2tYroB86jLLTLLLLR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3eec171b78a5b4379e93ff132a8eed99_JaffaCakes118

Files

3eec171b78a5b4379e93ff132a8eed99_JaffaCakes118
.exe windows:5 windows x86 arch:x86

97345fb6e595b1b850b5e30a0cda6821

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
WaitForMultipleObjects
ReadFile
PurgeComm
CreateMutexW
CreateEventW
LoadLibraryW
GetModuleHandleW
GetStartupInfoW
FindFirstFileExW
FindFirstFileW
FindNextFileW
ReplaceFileW
GetCPInfo
GetCommandLineW
RaiseException
IsProcessorFeaturePresent
EncodePointer
GetLastError
SetLastError
GetCurrentThreadId
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
IsDebuggerPresent
IsValidCodePage
GetACP
GetOEMCP
LeaveCriticalSection
HeapFree
LoadLibraryExW
RtlUnwind
OutputDebugStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
VirtualAlloc
InitializeCriticalSectionAndSpinCount
GlobalLock

user32

DrawIcon
GetTabbedTextExtentW
UpdateWindow
SetWindowRgn
SetScrollRange
GetClipCursor
ShowCaret
WindowFromPoint
FrameRect
GetMenuItemInfoW
UnionRect
LoadBitmapW
DestroyCursor
EnumDisplayMonitors
GetGUIThreadInfo
DdeSetUserHandle
AppendMenuW
CreatePopupMenu
PrintWindow
RegisterClassExW
ExitWindowsEx
KillTimer
GetFocus
SetFocus
CharNextW
CharLowerW
RegisterClipboardFormatW
GetNextDlgTabItem
SendDlgItemMessageW
CreateDialogParamW
InflateRect
EndDeferWindowPos

rasapi32

RasGetEntryPropertiesW

advapi32

RegCloseKey
RegCreateKeyExW

shell32

SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetDesktopFolder
Shell_NotifyIconW
ExtractIconExW
DragAcceptFiles
DragFinish
SHGetMalloc
SHChangeNotify

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.1MB - Virtual size: 7.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rnr7
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.8ekcad
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdt8
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.da97
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 359KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97345fb6e595b1b850b5e30a0cda6821

Headers

File Characteristics

Imports

kernel32

user32

rasapi32

advapi32

shell32

Sections

.text Size: 89KB - Virtual size: 88KB

.data Size: 1.1MB - Virtual size: 7.9MB

.idata Size: 3KB - Virtual size: 3KB

.xdata Size: 1024B - Virtual size: 724B

.rnr7 Size: 113KB - Virtual size: 112KB

.8ekcad Size: 285KB - Virtual size: 284KB

.sdt8 Size: 210KB - Virtual size: 210KB

.da97 Size: 120KB - Virtual size: 120KB

.rsrc Size: 359KB - Virtual size: 359KB

.text
Size: 89KB - Virtual size: 88KB

.data
Size: 1.1MB - Virtual size: 7.9MB

.idata
Size: 3KB - Virtual size: 3KB

.xdata
Size: 1024B - Virtual size: 724B

.rnr7
Size: 113KB - Virtual size: 112KB

.8ekcad
Size: 285KB - Virtual size: 284KB

.sdt8
Size: 210KB - Virtual size: 210KB

.da97
Size: 120KB - Virtual size: 120KB

.rsrc
Size: 359KB - Virtual size: 359KB