3851e47302b94727635b5ae0bcbbc539_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3851e47302b94727635b5ae0bcbbc539_JaffaCakes118
Size

468KB
MD5

3851e47302b94727635b5ae0bcbbc539
SHA1

04d33d8b1993ca9d22dff9f1759511398bd2521d
SHA256

a0b29a9399b35ad4e30871cb71dea6187b5ac3bb8e4f4ed4df7eac90e61b9c7f
SHA512

1cd9146760ff08a6dfa086d4f811c7dfe6d4015b0b0f5ee1939ec20b68446b61a2ca6eb37088a641c47d56ffbeb391d8d9e2e13476f77b3db8f5c5d3b4ee9a3a
SSDEEP

12288:A0usHqgZ57vkmOcX3jE+LFaPo6Qg9YMLhrJFh2BrmJkk6nfn:d/HqgZ57cLs3jEGFaPoT4hVFhFJkk6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3851e47302b94727635b5ae0bcbbc539_JaffaCakes118

Files

3851e47302b94727635b5ae0bcbbc539_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1f4a8bcdf643b0e33c85d0e2b824f2a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA
PageSetupDlgA

user32

GetDesktopWindow
DdeQueryNextServer
DdeUninitialize
GetDC
SetLastErrorEx
DrawFocusRect
EnumDisplaySettingsW
CloseClipboard
InsertMenuItemA
ChangeClipboardChain
DdeConnect
PostThreadMessageA
DdeInitializeA
UpdateWindow
GetDialogBaseUnits
ScrollWindowEx
wsprintfA
GetCursorInfo
LoadAcceleratorsW

advapi32

LookupAccountSidW
CryptGetDefaultProviderW
CryptGetProvParam
LookupPrivilegeDisplayNameA
RegCloseKey
CryptEnumProvidersA
RegLoadKeyA
RegConnectRegistryA
RegQueryMultipleValuesW
RegDeleteValueA
RegQueryInfoKeyW
RegCreateKeyExA
AbortSystemShutdownA
CryptAcquireContextW
CryptAcquireContextA
LookupAccountNameA
CryptCreateHash
InitiateSystemShutdownW
CryptEnumProviderTypesW
CryptContextAddRef
CryptVerifySignatureA
RevertToSelf

kernel32

InterlockedExchange
VirtualProtect
DuplicateHandle
DebugBreak
GetCommandLineA
VirtualQuery
InterlockedDecrement
GetProcAddress
GetFullPathNameA
LoadLibraryA
GetProcessHeap
GetUserDefaultLCID
GetVersionExA
RtlUnwind
IsValidCodePage
OpenFileMappingW
TerminateProcess
GetModuleHandleA
QueryPerformanceCounter
LeaveCriticalSection
GetTimeZoneInformation
TlsAlloc
SetConsoleCP
GetStringTypeW
GetSystemInfo
SetFilePointer
TlsSetValue
DeleteCriticalSection
CompareStringW
SetThreadPriority
UnhandledExceptionFilter
HeapDestroy
Sleep
HeapAlloc
GetCurrentThread
TlsFree
VirtualFree
GetOEMCP
SetStdHandle
SetConsoleCtrlHandler
TlsGetValue
SetHandleCount
LCMapStringA
GetCurrentProcessId
GetLongPathNameW
CreateDirectoryExA
IsValidLocale
HeapReAlloc
GetVersion
GetPrivateProfileSectionNamesA
GetACP
GetDateFormatA
SetEnvironmentVariableA
GetStdHandle
FreeEnvironmentStringsW
GetModuleFileNameA
TransactNamedPipe
GetCurrentThreadId
IsBadWritePtr
GetTimeFormatA
InterlockedIncrement
MultiByteToWideChar
CloseHandle
GetEnvironmentStrings
HeapCreate
GetCurrentProcess
GetEnvironmentStringsW
CompareStringA
GetTickCount
GetFileType
SetConsoleTitleW
HeapFree
GetStringTypeA
OutputDebugStringA
GetLocaleInfoW
FreeEnvironmentStringsA
DebugActiveProcess
FindResourceA
VirtualAlloc
LCMapStringW
WideCharToMultiByte
IsBadReadPtr
GetLastError
HeapValidate
InitializeCriticalSection
EnumSystemLocalesA
FindFirstFileA
ExitProcess
GetCPInfo
FlushFileBuffers
EnterCriticalSection
GetStartupInfoA
WriteFile
GetLocaleInfoA
GetSystemTimeAsFileTime
SetLastError

shell32

ShellAboutA

gdi32

GdiFlush
SelectObject
GetClipRgn
SaveDC
CancelDC
CopyEnhMetaFileA
GetCharWidthFloatA
AnimatePalette
CloseMetaFile
ScaleViewportExtEx
CreateCompatibleDC
SelectClipRgn
SetSystemPaletteUse
EnumICMProfilesA
GetCharWidthW
WidenPath
SetColorSpace

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f4a8bcdf643b0e33c85d0e2b824f2a9

Headers

File Characteristics

Imports

comdlg32

user32

advapi32

kernel32

shell32

gdi32

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 12KB - Virtual size: 30KB

.data Size: 282KB - Virtual size: 282KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 12KB - Virtual size: 30KB

.data
Size: 282KB - Virtual size: 282KB

.rsrc
Size: 10KB - Virtual size: 10KB