37fc1e19d1430cf1fdfcaa295088261c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37fc1e19d1430cf1fdfcaa295088261c_JaffaCakes118
Size

371KB
MD5

37fc1e19d1430cf1fdfcaa295088261c
SHA1

d5b28769fcbb12faabd853a2508778d962c2e4e7
SHA256

55177b791b380a7a9b5e41e163b581f2927c555079df7f321de7cc91365325b2
SHA512

0ef7c19b2fa9ce8faf73932d78802bdaadda52d0d3146564847daab4fcd590c861ba38183cfd6c9b0aaa373b368715a86003a8187c02b3135d287acabe6e3c8e
SSDEEP

6144:nL0pQvjbvPE816xdpBsAjArzp0pAX3BamnEcu8/shLkl8wdzwMxR:L0yXNMxdpTcgAHBamEXt5odzRxR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37fc1e19d1430cf1fdfcaa295088261c_JaffaCakes118

Files

37fc1e19d1430cf1fdfcaa295088261c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8d41cf0716f687dc30b5fcf51021c4ff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetClassLongW
CreateDialogParamA
CharNextW
SetRect
RegisterClassExA
RegisterHotKey
GetSystemMetrics
RegisterClassA
DdeQueryStringW
CallMsgFilterW
GetMenuItemCount
CharPrevW
CascadeWindows
CharUpperW
ToAscii
IsCharUpperA
FindWindowExA
LockWindowUpdate

kernel32

GetProcessHeaps
GetCurrentDirectoryW
AllocConsole
LCMapStringW
ReadConsoleOutputW
LeaveCriticalSection
ExitProcess
GetDiskFreeSpaceExW
GetOEMCP
GetStartupInfoA
PulseEvent
GetProfileSectionW
GetLocalTime
InitializeCriticalSection
TlsGetValue
GetStdHandle
GetCPInfo
GetSystemTime
VirtualQuery
LocalFlags
CreateMutexA
VirtualAlloc
GetModuleHandleA
GetLongPathNameA
DeleteCriticalSection
ReadFile
CreateFileMappingW
IsBadWritePtr
QueryPerformanceCounter
HeapDestroy
WritePrivateProfileStringW
GetProcAddress
SetStdHandle
HeapReAlloc
InterlockedIncrement
SetHandleCount
WideCharToMultiByte
CreateMailslotA
GetEnvironmentStrings
GetFileType
GetFileAttributesExA
EnterCriticalSection
FreeEnvironmentStringsA
CompareStringA
EnumCalendarInfoA
InterlockedDecrement
FreeEnvironmentStringsW
GlobalFlags
LoadLibraryA
MultiByteToWideChar
HeapAlloc
GetThreadSelectorEntry
GetConsoleCP
SetLastError
GetCommandLineA
RtlUnwind
TlsSetValue
TlsAlloc
UnhandledExceptionFilter
FindResourceA
HeapCreate
FlushFileBuffers
GetCurrentProcessId
GetSystemTimeAsFileTime
GetVersion
CompareStringW
InterlockedExchange
CloseHandle
GetTimeZoneInformation
GetPrivateProfileSectionW
SetFilePointer
GetModuleFileNameA
GetStringTypeW
GetTickCount
GetCurrentProcess
HeapFree
VirtualFree
WriteFile
GetExitCodeProcess
TlsFree
GetEnvironmentStringsW
LCMapStringA
SetEnvironmentVariableA
LockResource
OpenMutexA
TerminateProcess
GetCurrentThread
GetACP
GetCurrentThreadId
GetLastError
GetStringTypeA

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d41cf0716f687dc30b5fcf51021c4ff

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 149KB - Virtual size: 148KB

.rdata Size: 4KB - Virtual size: 28KB

.data Size: 206KB - Virtual size: 205KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 149KB - Virtual size: 148KB

.rdata
Size: 4KB - Virtual size: 28KB

.data
Size: 206KB - Virtual size: 205KB

.rsrc
Size: 10KB - Virtual size: 10KB