3159b5e9e0b74e1b2371c3e600b4cfc5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3159b5e9e0b74e1b2371c3e600b4cfc5_JaffaCakes118
Size

200KB
MD5

3159b5e9e0b74e1b2371c3e600b4cfc5
SHA1

e8cde521bd626902225924a49ef410fef1a723f1
SHA256

883594eb3abc603c144d775678960c17eadbe5325d175ecfb4e8c01d5eb79447
SHA512

8c867842ed01c0f4dffcdc736dc2a9c5cdc20da42c58ffa01bff2880d17fc7d78dc9f4989c06a2390a7496ed0a9bc3edbc7ffbd3a82c20ec4d242d42e9461aa6
SSDEEP

3072:p9GO5Ln+o4wO9izC+PssYGASa8fS6XI4zlThnuVrydYXoOcg00ritm:pxFO3ssSa21IkTsV2d2oqri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3159b5e9e0b74e1b2371c3e600b4cfc5_JaffaCakes118

Files

3159b5e9e0b74e1b2371c3e600b4cfc5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bd34db7ade0a804516c0e111ae1ffba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
WriteFile
CloseHandle
GetEnvironmentStrings
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
SetFilePointer
CreateFileW
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetProcAddress
GetStringTypeA
GetStringTypeW
SetEndOfFile
MulDiv
GetCurrentProcess
GetProcessTimes
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatA
GetSystemTime
GetSystemPowerStatus
LoadLibraryW
LoadLibraryA
WideCharToMultiByte
lstrlenA
GetLastError
HeapAlloc
RtlUnwind
HeapReAlloc
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ReadFile

user32

GetDoubleClickTime
SetDoubleClickTime
CreateWindowExA
ShowWindow
IsWindowEnabled
MoveWindow
DestroyWindow
WindowFromPoint
DrawCaption
OffsetRect
DrawEdge
DrawFocusRect
DrawFrameControl
DrawTextA
SetRect
GetSysColorBrush
FillRect
SetWindowRgn
GetDC
SetCursorPos
GetSystemMetrics
GetSysColor
SetSysColors
GetWindowRect
GetCursorPos
SystemParametersInfoA
CopyRect
GetDesktopWindow
GetWindowDC
ReleaseDC
GetFocus

gdi32

CreateDIBSection
BitBlt
GetDIBits
SetDIBitsToDevice
DeleteDC
GetTextExtentPoint32A
ExtTextOutA
CreateSolidBrush
ExtFloodFill
CreateCompatibleBitmap
SelectObject
TextOutA
CreateEllipticRgn
GetDeviceCaps
CreateFontA
Polygon
GetStockObject
CreatePolygonRgn
FillRgn
DeleteObject
SetMapMode
GetTextMetricsA
CreateCompatibleDC

advapi32

OpenEventLogA
ClearEventLogA
ReportEventA
GetNumberOfEventLogRecords
GetOldestEventLogRecord
BackupEventLogA
CloseEventLog

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bd34db7ade0a804516c0e111ae1ffba

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 10KB

.rsrc Size: 152KB - Virtual size: 151KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 10KB

.rsrc
Size: 152KB - Virtual size: 151KB