3ad0435b72fbf2bba04aad39156c1e6e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ad0435b72fbf2bba04aad39156c1e6e_JaffaCakes118
Size

166KB
MD5

3ad0435b72fbf2bba04aad39156c1e6e
SHA1

eb213b3d09385dfb691b692c3020917566cd92f7
SHA256

81c542ef308b7c6629ab21d38977ce829948a84b94259ecbe0c127a40e4d0710
SHA512

22bd08dba5532b62f7d7247e049dc8c216a03a6f971195ce15dd8f90543c3bc3fd216b56e079b4e4e62a90e1801b89c5897588bcdcc276265cf9770066995505
SSDEEP

3072:QeIYhwevzI2hJL5MNcPQmnG1mgRzGm6Te2hKOtZT10OOJ89xie0kV:Qwhwe7IQ+YG1Rivi2hBtZT10OyUtV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ad0435b72fbf2bba04aad39156c1e6e_JaffaCakes118

Files

3ad0435b72fbf2bba04aad39156c1e6e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

51d66e3c9bbfce6a90f4f824907524ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\jqtstfAewtFNtW\guqhqyarUotp\wmxFmFlkv\qzgbrxctFFnqc.pdb

Imports

user32

EnumThreadWindows
mouse_event
GetScrollInfo
ShowOwnedPopups
GetMenuStringA
FrameRect
IsZoomed
RemoveMenu
LoadCursorA
GetUserObjectInformationA
EnableMenuItem
LoadStringA
DestroyCaret
GetMessagePos
GetFocus
SetScrollRange
CallWindowProcA
ReplyMessage
TranslateAcceleratorA
GetClassInfoExA
EnumWindows
SetDlgItemTextW
GetWindowLongW
SetRectEmpty
DefWindowProcW
CharNextW
CharUpperBuffA
RegisterClassExW
SetMenuDefaultItem
ScrollWindow
CreateCaret
InsertMenuW
InsertMenuA
GetDialogBaseUnits
DrawTextExW
SendInput
InternalGetWindowText
CharLowerBuffW
MonitorFromRect
CreateWindowExW
OffsetRect
GetKeyState

msvcrt

_controlfp
__set_app_type
wcscat
wcschr
__p__fmode
__p__commode
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
fclose
_XcptFilter
tolower
wcstombs
free
_exit
_cexit
system
__setusermatherr
perror
strrchr
__getmainargs
fgetc
swscanf
sprintf

shlwapi

StrToIntExA
StrCatBuffA

gdi32

OffsetViewportOrgEx
CreatePenIndirect
ScaleWindowExtEx
SetRectRgn
EndPage
SetPaletteEntries
Rectangle
GetFontData
GetTextExtentExPointW
EnumFontFamiliesExW
EnumFontFamiliesW
SetStretchBltMode
CreateHalftonePalette
PathToRegion
BitBlt
GetTextExtentPointW
GetSystemPaletteEntries
OffsetRgn

kernel32

GetUserDefaultLCID
GlobalCompact
SetSystemTimeAdjustment
GetCommTimeouts
InitializeCriticalSection
LoadResource
GlobalLock
GetFileAttributesExA
SetCommBreak
OpenFile
SetThreadContext
GetModuleHandleA
lstrlenA
GlobalGetAtomNameA
GetFullPathNameW
lstrcmpA
VirtualFree
CreateFileMappingA
FindCloseChangeNotification
LoadLibraryW
MoveFileW
TlsGetValue

Exports

Exports

?GenerateMediaTypeW@@YGXMPAGPAEPA_N~U
?IsNotObjectExA@@YGPAHKJ~U
?GetValueOriginal@@YGFDMGG~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?IsSystemA@@YGJGPAFM~U
?InsertProviderOld@@YGPAXM~U

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kip
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticy
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heap
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51d66e3c9bbfce6a90f4f824907524ea

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

gdi32

kernel32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 2KB - Virtual size: 2KB

.kip Size: 512B - Virtual size: 492B

.ticy Size: 512B - Virtual size: 392B

.zdata Size: 1024B - Virtual size: 728B

.data Size: 2KB - Virtual size: 2KB

.heap Size: - Virtual size: 128KB

.rsrc Size: 135KB - Virtual size: 134KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 2KB - Virtual size: 2KB

.kip
Size: 512B - Virtual size: 492B

.ticy
Size: 512B - Virtual size: 392B

.zdata
Size: 1024B - Virtual size: 728B

.data
Size: 2KB - Virtual size: 2KB

.heap
Size: - Virtual size: 128KB

.rsrc
Size: 135KB - Virtual size: 134KB

.reloc
Size: 2KB - Virtual size: 1KB