33fc5a79bfe1fb3ea0ea7e2aef07204e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

33fc5a79bfe1fb3ea0ea7e2aef07204e_JaffaCakes118
Size

424KB
MD5

33fc5a79bfe1fb3ea0ea7e2aef07204e
SHA1

eefb6c5f819d682983b85d05a5b5294629e6cea4
SHA256

a17fdebd0090d7c34af762fc209a52bf1cf1f983bc8b161ee190c05a2ce2089f
SHA512

3f8da038a9a4ddb6da27b7aedc5ef9342343e58f90d95811439ced8b4ec624d5bbc5634c454782ca6c87bb08352147a9bac6a1e2d81fbb4d7c9b341f447c56ff
SSDEEP

6144:QmcypSXaS5UOUdLdCJ9z5CR6wmK+lZlc3G0B/cNN/ws8vnbUumaXxLcatV+qK:7cVbRUDy9AzW43G0llvnbUNahLc8U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33fc5a79bfe1fb3ea0ea7e2aef07204e_JaffaCakes118

Files

33fc5a79bfe1fb3ea0ea7e2aef07204e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d11ab3216ebf79b2bb6a1f514f9fc03e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellAboutW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW

msvcrt

_beep
_getdrives
_wunlink
_get_osfhandle
_access
malloc
_ui64tow
_adjust_fdiv
raise
_wstrtime
wcsxfrm
islower
srand
iswpunct
iswdigit
atol
iswspace
_XcptFilter
_splitpath
strchr
fgetwc
sin
rewind
_wfopen
memcpy
_wgetcwd
__RTtypeid
vwprintf
_findfirst
_ismbbtrail
difftime
_CIlog
_wctime64
_purecall
_cscanf

kernel32

SetConsoleMenuClose
GetConsoleWindow
RequestWakeupLatency
ExitProcess
VirtualAlloc
WaitNamedPipeW
GetModuleHandleA
VirtualFree
IsBadReadPtr
SetLastError
ConvertDefaultLocale
GetConsoleAliasesA
GlobalFindAtomA
lstrcmpW
GetLastError
Sleep
GetProfileSectionA
TerminateJobObject
DeleteCriticalSection
MoveFileWithProgressW
DeleteAtom
IsValidCodePage
SetLastConsoleEventActive
GetFileInformationByHandle
lstrcmpiW
GetFileTime
WriteConsoleInputVDMW
OutputDebugStringA
FindFirstChangeNotificationW
GetFullPathNameW
GetStartupInfoA
GetCompressedFileSizeW

gdi32

ScaleViewportExtEx
GetTextCharset
CombineTransform
GetPath
StartDocA
CreateDiscardableBitmap
SetDIBColorTable
AnimatePalette
GetStretchBltMode
GetViewportExtEx
GetMetaFileBitsEx
ChoosePixelFormat
CreateSolidBrush
CreateDIBSection
ModifyWorldTransform
SetDIBitsToDevice
SetPolyFillMode

user32

CreateAcceleratorTableW
CreateDialogParamA
DdeReconnect
CreateWindowStationA
CopyImage
CallWindowProcA
DdeQueryNextServer

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.uzq
Size: 152KB - Virtual size: 425KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gafzc
Size: 263KB - Virtual size: 534KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d11ab3216ebf79b2bb6a1f514f9fc03e

Headers

File Characteristics

Imports

shell32

msvcrt

kernel32

gdi32

user32

Sections

.text Size: 7KB - Virtual size: 8KB

.uzq Size: 152KB - Virtual size: 425KB

.gafzc Size: 263KB - Virtual size: 534KB

.reloc Size: 1024B - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 8KB

.uzq
Size: 152KB - Virtual size: 425KB

.gafzc
Size: 263KB - Virtual size: 534KB

.reloc
Size: 1024B - Virtual size: 1KB