b3cc5a2f2038f997a1a675fa0863336b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b3cc5a2f2038f997a1a675fa0863336b_JaffaCakes118
Size

66KB
MD5

b3cc5a2f2038f997a1a675fa0863336b
SHA1

3ec928ce8b6e11c7de38d0f024f03070c476aef0
SHA256

f100d13ed13b875cfac115cbff7aa0b235e7e67716c2b4177fe6b97f68296bf5
SHA512

67b131144959d047ddf9c1b390f54f85edb405bcb96237b7bac1fa3b948d3eadc12821e8fd34bf5582bee01457f0e833a2c4187d1d1845af933de00d51eb6812
SSDEEP

1536:4ku4IT8QKpWtAUKKeQ+j+l5cKhztzk8RKV:4QAtWKeQ+j+/cKhzBkGe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3cc5a2f2038f997a1a675fa0863336b_JaffaCakes118

Files

b3cc5a2f2038f997a1a675fa0863336b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

59453185dba79ae3d0f77b36f0d8347e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringW
GetMessageW
TranslateMessage
DispatchMessageW
LoadIconW
RegisterClassExW
BeginPaint
GetWindowRect
MoveWindow
EndPaint
PostQuitMessage
LoadCursorW
DefWindowProcW
DestroyWindow
SendMessageW
CreateWindowExW
ShowWindow
UpdateWindow
MessageBoxA
PostMessageA
SetWindowTextA
SetMenuItemInfoA
GetScrollPos
GetDlgItemInt
LockWindowUpdate
OpenClipboard
MapWindowPoints
SetMenu
PtInRect
DrawIcon
GetCursorPos
EndDeferWindowPos
GetDesktopWindow
EnableMenuItem
GetDCEx
SetScrollRange
ShowCaret
GetActiveWindow
FrameRect
RedrawWindow
GetDlgCtrlID
GetFocus
GetScrollRange
RegisterClassA
SetWindowLongA
GetDlgItemTextA
GetClassNameA
ModifyMenuA
SetDlgItemTextA

kernel32

InterlockedIncrement
InterlockedDecrement
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
HeapAlloc
WriteFile
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetStartupInfoA
MapViewOfFile
lstrlenA
lstrcmpA
Sleep
GetCurrentDirectoryW
CreateFileW
GetLastError
GetModuleHandleA
RtlUnwind
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
WideCharToMultiByte

comctl32

ord17

shell32

ExtractIconW

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59453185dba79ae3d0f77b36f0d8347e

Headers

File Characteristics

Imports

user32

kernel32

comctl32

shell32

Sections

.text Size: 26KB - Virtual size: 25KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 26KB - Virtual size: 25KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 16KB - Virtual size: 16KB