3793065579ac3d9ef7d5dc07c4510f95_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3793065579ac3d9ef7d5dc07c4510f95_JaffaCakes118
Size

525KB
MD5

3793065579ac3d9ef7d5dc07c4510f95
SHA1

1ab10a5e48608bbf220c6c8b88eafa2521cb5ac9
SHA256

f066d45dedc2107ab76a4c5b1349b2f249795cfff00e5337d07dae443c505c6f
SHA512

3f60dd8ceabb374893c20a6a52a1d53cc22a0a53eb184a397a630578c92d90d66ccb47e98ff5e3bdf56a311912e6e8375f6164a2237077d16f02848b896f0f9c
SSDEEP

12288:pyymOxAqn/8+yYFFZXYYNKmF9lhlY9BOy7xZXux94/7Tv:YGAQ/TZoYAmFbhlY9oSJUwT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3793065579ac3d9ef7d5dc07c4510f95_JaffaCakes118

Files

3793065579ac3d9ef7d5dc07c4510f95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

500fb695e3cd9d193af0592a4e19a2cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnloadKeyboardLayout
wsprintfW
GetPropW
TranslateAccelerator
UnregisterDeviceNotification
IntersectRect
OpenWindowStationW
SetWindowsHookA
OpenWindowStationA
GetMessagePos
CloseWindowStation
DdeReconnect
RegisterClassExA
CreateDialogIndirectParamW
RegisterClassA
SetCaretPos
EnumDisplaySettingsExW
PostMessageW
RegisterDeviceNotificationA
MsgWaitForMultipleObjects
GetKeyNameTextA
SetSystemCursor
DdeKeepStringHandle

kernel32

GetVersionExA
CreateMutexA
HeapDestroy
VirtualFree
GetCurrentThread
GetDateFormatA
GetCurrentProcessId
ReadFile
InterlockedIncrement
HeapReAlloc
SetStdHandle
GetSystemTimeAsFileTime
GetUserDefaultLCID
GetFileType
HeapCreate
GetModuleFileNameW
WideCharToMultiByte
VirtualAlloc
GetEnvironmentStringsW
SetFilePointer
FreeEnvironmentStringsW
GetStringTypeW
EnumSystemLocalesA
GetOEMCP
GetLastError
InitializeCriticalSection
IsBadWritePtr
GetLocaleInfoW
TlsSetValue
GetConsoleCP
GetLocaleInfoA
HeapAlloc
SetHandleCount
FindFirstFileExA
GetStartupInfoW
LoadLibraryA
GetEnvironmentStrings
UnhandledExceptionFilter
GetProcessHeap
FreeLibrary
CloseHandle
WriteFile
WriteProfileSectionW
GetACP
FileTimeToLocalFileTime
TlsAlloc
InterlockedExchange
EnterCriticalSection
HeapSize
GetModuleFileNameA
GetCurrentThreadId
Sleep
HeapFree
ExitProcess
WriteConsoleW
SetEnvironmentVariableA
SetConsoleCtrlHandler
TlsGetValue
TlsFree
SetLastError
IsValidCodePage
EnumCalendarInfoW
LCMapStringW
SetThreadAffinityMask
IsValidLocale
InterlockedDecrement
LCMapStringA
GlobalDeleteAtom
LocalShrink
QueryPerformanceCounter
GetStdHandle
GetTickCount
GetConsoleOutputCP
OpenSemaphoreW
GetCPInfo
EnumResourceLanguagesW
GetTimeZoneInformation
GetCurrentProcess
OpenMutexA
GetConsoleMode
LocalCompact
FlushFileBuffers
GetProcAddress
GetStringTypeExA
GetTimeFormatA
GetCommandLineW
TerminateProcess
CompareStringW
WriteConsoleA
GetModuleHandleA
GetCommandLineA
WriteProfileSectionA
CompareStringA
LockFileEx
VirtualQuery
IsDebuggerPresent
FreeEnvironmentStringsA
MultiByteToWideChar
GetStringTypeA
RtlUnwind
LeaveCriticalSection
SetUnhandledExceptionFilter
ExpandEnvironmentStringsW
DeleteCriticalSection
CreateFileA
GetStartupInfoA

comdlg32

ReplaceTextW
GetFileTitleA
ChooseColorA

comctl32

InitCommonControlsEx

shell32

SHGetInstanceExplorer
SHGetSettings
SheChangeDirA
SHInvokePrinterCommandW
CheckEscapesW

Sections

.text
Size: 191KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

500fb695e3cd9d193af0592a4e19a2cd

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

comctl32

shell32

Sections

.text Size: 191KB - Virtual size: 191KB

.rdata Size: 10KB - Virtual size: 34KB

.data Size: 316KB - Virtual size: 315KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 191KB - Virtual size: 191KB

.rdata
Size: 10KB - Virtual size: 34KB

.data
Size: 316KB - Virtual size: 315KB

.rsrc
Size: 7KB - Virtual size: 6KB