3b3739e7be06481bd84ec998ce134cd7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b3739e7be06481bd84ec998ce134cd7_JaffaCakes118
Size

186KB
MD5

3b3739e7be06481bd84ec998ce134cd7
SHA1

be67658f884398294af693f2b502555b46a5609e
SHA256

15256dc41cf5306cc37e203023a5c277bfc32f6b37156518f2b8740a261eeb9d
SHA512

e3cef81796aa6777cc48032d03b1a978dad6333b4b586f6d8e67331f7470d68969d3dcf1dd1b48437ef39394bd9b392ffb96a2426edc3c90bdfe4c2675a74b61
SSDEEP

3072:YFAbtD3u3QuBjoHvbpYDKR9Ozk7+DmaYGDgKcn+c1iAo/VqKbPULC:YFktC3XoTWAOzkMZs8nP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b3739e7be06481bd84ec998ce134cd7_JaffaCakes118

Files

3b3739e7be06481bd84ec998ce134cd7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHSetValueA

gdi32

GetBkColor
SelectPalette

user32

GetWindow
GetClassNameA
SetWindowPlacement
CharLowerBuffA
DrawAnimatedRects
IsWindowUnicode
MapVirtualKeyA
CharToOemA
PostQuitMessage
SetPropA
SetCapture
EnableScrollBar
GetFocus
MessageBeep
IsMenu
LoadBitmapA
SetWindowsHookExA
GetMenuItemInfoA
GetWindowLongW
CreateIcon
EnumThreadWindows
GetClipboardData
IsCharLowerA
ShowOwnedPopups
RemoveMenu
InsertMenuItemA
GetScrollRange
CreateWindowExA
SetScrollRange
SetForegroundWindow
WindowFromPoint
ClientToScreen
IsDlgButtonChecked
GetWindowTextA
GetClientRect
GetKeyNameTextA
SetScrollInfo
CharNextW
GetWindowPlacement
GetIconInfo
DrawFrameControl
IsRectEmpty
CharNextA
OffsetRect
LoadIconA
CreateMenu
EndDialog
IsIconic
EmptyClipboard
UnregisterClassA
SetActiveWindow
GetMenuState
DrawIconEx
CheckMenuItem
SetParent
SetClipboardData
GetMenu
GetTopWindow
wsprintfA
GetDlgItem
TranslateMessage

kernel32

GetCPInfo
SetThreadLocale
GetModuleHandleA
GetCurrentThreadId
WaitForSingleObject
WideCharToMultiByte
GetDateFormatA
CreateEventA
CreateFileA
GetCommandLineW
SetFilePointer
SetErrorMode
VirtualAllocEx
LoadLibraryA
GetTickCount
HeapFree
VirtualFree
CreateThread
ExitProcess
GetProcAddress
GetStdHandle
GetThreadLocale

Exports

Exports

gD34I6A
0LhgMu3ChPDc3@16
eFI7uvlt
_SsuhfPH6_
_MekBI3m_wmAf@24
41GDQYdQNvWl@24
LGaAh_fh80@16
aM9AkHHsa3
_DZYWXAOB@16
_k9Bf4ro@16
_YwN3xqK@20

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

Imports

shlwapi

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 9KB - Virtual size: 156KB

.data Size: 150KB - Virtual size: 149KB

.abdata Size: 512B - Virtual size: 252B

.edata Size: 512B - Virtual size: 304B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 9KB - Virtual size: 156KB

.data
Size: 150KB - Virtual size: 149KB

.abdata
Size: 512B - Virtual size: 252B

.edata
Size: 512B - Virtual size: 304B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB