3808d9b323471ce5ffa7f57d3a3148b6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3808d9b323471ce5ffa7f57d3a3148b6_JaffaCakes118
Size

280KB
MD5

3808d9b323471ce5ffa7f57d3a3148b6
SHA1

7b13c334c031534cdffdd8b5c62bbe9f90e5bdd6
SHA256

0dd204ee640fd680a585b223d4e6aaa5ec3c105cd3584e326d1ab606501038cc
SHA512

62a2699b5ad2883e0ae636438fdd6fe8a34075556225aa82345b566c7477a15a1409084c6f6488b9537f334469a19d4d414ba6fb02cb594326a093b6dfc92af6
SSDEEP

6144:xQzwx72g5xgAD2CEDwomNBKFaB7uwVlZPUWArXK:V92g5xgAqCVTKFaIwh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3808d9b323471ce5ffa7f57d3a3148b6_JaffaCakes118

Files

3808d9b323471ce5ffa7f57d3a3148b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e48a102355e2b8eb6388a7c34aeb97d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\majgfoep\owepe.PDB

Imports

user32

DestroyWindow
RegisterClassExA
GetMenuDefaultItem
TileWindows
OpenIcon
AdjustWindowRect
GetKeyboardType
CreateMDIWindowW
CharLowerW
MonitorFromWindow
IntersectRect
GetSystemMenu
wsprintfA
GetForegroundWindow
DefWindowProcW
GetCursorInfo
InvalidateRect
GetClassLongW
FreeDDElParam
ShowWindow
MessageBoxA
SendNotifyMessageA
SetClassWord
SetTimer
WaitMessage
RegisterClassA
DefWindowProcA
CreateWindowExA
EnableScrollBar
CallNextHookEx
GetPriorityClipboardFormat
BringWindowToTop
IsMenu
ChangeDisplaySettingsExA
DefMDIChildProcA

kernel32

CreateMutexA
WritePrivateProfileStringW
CompareStringW
SetConsoleActiveScreenBuffer
HeapFree
GetPrivateProfileIntA
IsValidLocale
EnumSystemLocalesA
WideCharToMultiByte
CreateNamedPipeW
LCMapStringA
GetStdHandle
VirtualFree
CompareStringA
TerminateProcess
DeleteCriticalSection
GetStartupInfoA
GetSystemInfo
CreateFileA
OpenFileMappingW
DosDateTimeToFileTime
MultiByteToWideChar
SetEnvironmentVariableA
TlsGetValue
SetLastError
GlobalAlloc
SetLocaleInfoA
GlobalFlags
GetFileAttributesExW
SetStdHandle
GlobalCompact
TlsFree
EnumCalendarInfoExW
GetVersionExA
GetThreadContext
GetTickCount
GetCommandLineA
OpenMutexA
HeapReAlloc
LoadLibraryA
HeapAlloc
SetConsoleTitleA
VirtualAlloc
SetEvent
SetThreadIdealProcessor
GetNamedPipeHandleStateW
ReadFile
RaiseException
EnumSystemLocalesW
GetSystemTimeAsFileTime
CreatePipe
InitializeCriticalSection
GetCurrentProcess
SetFilePointer
LoadResource
UnhandledExceptionFilter
lstrcmp
EnterCriticalSection
GetStartupInfoW
lstrcmpiW
HeapDestroy
GetCurrentThreadId
GetExitCodeProcess
GetEnvironmentStrings
GetCurrentProcessId
SetConsoleWindowInfo
IsBadWritePtr
MoveFileExW
GetStringTypeA
IsValidCodePage
GetLocaleInfoA
HeapSize
RemoveDirectoryW
LCMapStringW
VirtualQuery
MoveFileA
GetModuleHandleA
GetProfileSectionA
lstrcpyA
GetTimeZoneInformation
GetDateFormatA
GetModuleFileNameW
GetCurrentThread
GetLocaleInfoW
GetLastError
HeapCreate
TlsAlloc
GetUserDefaultLCID
LocalFree
GetSystemTimeAdjustment
SetHandleCount
TlsSetValue
GetProcAddress
GetCPInfo
LeaveCriticalSection
GetLogicalDriveStringsA
GetConsoleTitleW
GetACP
lstrcpynW
FreeLibrary
DeleteFiber
VirtualProtect
GetFileType
CreateThread
FreeEnvironmentStringsW
GetCurrentDirectoryA
CloseHandle
EnumResourceLanguagesA
SetConsoleCtrlHandler
WaitForMultipleObjects
FlushFileBuffers
GetStringTypeW
CommConfigDialogA
GetCommandLineW
WriteFile
GetPriorityClass
GetTimeFormatA
LocalLock
ExitProcess
GetModuleFileNameA
GlobalAddAtomW
QueryPerformanceCounter
CompareFileTime
GetOEMCP
RtlUnwind
InterlockedExchange
FreeEnvironmentStringsA
WaitForSingleObject
GetLocalTime
GetEnvironmentStringsW
LockResource
GetCompressedFileSizeA
CopyFileA

wininet

SetUrlCacheGroupAttributeW
FindFirstUrlCacheContainerA
ResumeSuspendedDownload
FindNextUrlCacheContainerA
FtpPutFileEx
InternetFindNextFileW

comctl32

ImageList_EndDrag
ImageList_Duplicate
ImageList_SetBkColor
ImageList_GetIconSize
ImageList_LoadImage
InitCommonControlsEx
ImageList_GetImageInfo
CreateToolbarEx
_TrackMouseEvent
CreateMappedBitmap
ImageList_Destroy
CreateUpDownControl
ImageList_BeginDrag

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e48a102355e2b8eb6388a7c34aeb97d0

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

wininet

comctl32

Sections

.text Size: 80KB - Virtual size: 76KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 92KB - Virtual size: 112KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 80KB - Virtual size: 76KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 92KB - Virtual size: 112KB

.rsrc
Size: 32KB - Virtual size: 31KB