3704cb97402f334247087b894e74cb8d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3704cb97402f334247087b894e74cb8d_JaffaCakes118
Size

81KB
MD5

3704cb97402f334247087b894e74cb8d
SHA1

4d69dcfb2ea1d2a38ddf1aa01c8f0844e8e57094
SHA256

a453eb609eee8bc28e62f72e436a4c112cf33989781f69b52afde4cb92c88831
SHA512

a483c33eee1e3c99a8cda7b2eb355e9480eb4002cda3829c4734dd5e1c3c7726e12adb04aa350f72a175890b6d22ad346b601493177dd2d7a9ec17b26c830d88
SSDEEP

768:Fw/a0Udtj4Fy+v+BDcSRuaU0b1W5m2XiYs3z2/83fzaexmVM3oppcCSY1/g:G74t/BdU0bCiVCQaymu4X5hg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3704cb97402f334247087b894e74cb8d_JaffaCakes118

Files

3704cb97402f334247087b894e74cb8d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79846bb4c0749cdbbbb76eb870317111

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetProcAddress
LoadLibraryA
lstrlenA
GetPrivateProfileStringA
CloseHandle
GetModuleFileNameA
lstrcmpA
FreeLibrary
CreateFileA
WriteFile
lstrcatA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLastError
VirtualAlloc
HeapAlloc
HeapFree
GetStringTypeW
GetStringTypeA
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
HeapReAlloc
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetLocalTime
GetSystemTime
GetTimeZoneInformation

user32

GetDlgItemTextA
GetTopWindow
GetWindow
SetDlgItemTextA
GetDialogBaseUnits
LoadStringA
DialogBoxParamA
wvsprintfA
GetDlgItem
SendMessageA
RegisterClassA
LoadBitmapA
GetSystemMetrics
SetWindowPos
EnableWindow
wsprintfA
SetWindowTextA
GetCursorPos
GetWindowRect
PtInRect
ScreenToClient
PostMessageA
SetFocus
LoadCursorA
DefWindowProcA
GetParent
PeekMessageA
CreateWindowExA
ShowWindow
GetPropA
DestroyWindow
RemovePropA
GetDesktopWindow
IsWindowEnabled
IsRectEmpty
DrawTextA
FillRect
SetCapture
CopyRect
ReleaseCapture
GetWindowLongA
GetWindowTextA
SetWindowWord
SetWindowLongA
IsIconic
InvalidateRect
BeginPaint
GetWindowWord
GetFocus
DrawFocusRect
EndPaint
SetTimer
GetDC
ReleaseDC
WaitMessage
EndDialog
GetClientRect
SetPropA

gdi32

CreateFontA
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetObjectA
GetStockObject
CreatePen
SetTextAlign
CreateSolidBrush
DeleteObject
SetBkMode
SetBkColor
AddFontResourceA
MoveToEx
LineTo
SetTextColor

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

79846bb4c0749cdbbbb76eb870317111

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 33KB - Virtual size: 33KB

.rdata Size: 1024B - Virtual size: 1024B

.data Size: 10KB - Virtual size: 12KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 32KB - Virtual size: 52KB

.text
Size: 33KB - Virtual size: 33KB

.rdata
Size: 1024B - Virtual size: 1024B

.data
Size: 10KB - Virtual size: 12KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 32KB - Virtual size: 52KB