3a1a4cfb2e3f9ab11a79c8f9ff0530e4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a1a4cfb2e3f9ab11a79c8f9ff0530e4_JaffaCakes118
Size

524KB
MD5

3a1a4cfb2e3f9ab11a79c8f9ff0530e4
SHA1

3214d881eca877ec03567781d9c73851b177f3fc
SHA256

efdf4632b0a38e04eb4547f5d8269c92a809000897ad96a96d4b5394b2fd1114
SHA512

77a02212596a287e9210dbfa23095c8f2a66826a544def69480dadf273b76d3dc0015a0e12e2bd04fd74c46b1a14eca40126d3b501f3b023e783780227ddd88b
SSDEEP

12288:T0nTwbHBAEoAYhBdH9Pt7K+/5EHKs/3FncZVfV2gL:YnErBhn4Bt9Pt2cp+3FsVfYK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a1a4cfb2e3f9ab11a79c8f9ff0530e4_JaffaCakes118

Files

3a1a4cfb2e3f9ab11a79c8f9ff0530e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

adbf5105ec22912b87d7e65b4473bb8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
CloseHandle
GlobalLock
GetDriveTypeW
HeapCreate
EnumDateFormatsW
GetStartupInfoW
GetLocaleInfoW
GetProcAddress
lstrcpynW
GetSystemInfo
DeleteCriticalSection
ReadConsoleOutputAttribute
GetStartupInfoA
CreateMutexA
LCMapStringW
TlsGetValue
VirtualQueryEx
CreateMailslotW
GetTickCount
GetCurrentThreadId
TlsSetValue
HeapSize
WriteFile
HeapFree
GetOEMCP
GetCommandLineA
GetModuleFileNameW
RtlFillMemory
GetLocaleInfoA
SetUnhandledExceptionFilter
WaitCommEvent
VirtualQuery
GetProcessAffinityMask
SetStdHandle
CompareStringW
GetWindowsDirectoryA
SetFileTime
EnumResourceLanguagesW
TerminateProcess
SetEndOfFile
SetHandleCount
SetConsoleCtrlHandler
lstrlenW
SetFilePointer
EnterCriticalSection
GetSystemTime
FileTimeToLocalFileTime
OutputDebugStringA
GetConsoleCP
GetEnvironmentStrings
GetSystemTimeAsFileTime
GetFileType
ReadFile
InterlockedExchange
IsValidCodePage
lstrcatA
GetStringTypeW
GetCurrentThread
ReadConsoleOutputW
TlsFree
GetTimeZoneInformation
CompareStringA
EnumSystemLocalesA
GetEnvironmentStringsA
UnhandledExceptionFilter
GlobalReAlloc
GetDateFormatW
GetProfileSectionW
OpenMutexA
LCMapStringA
GetStringTypeA
GetFullPathNameA
SetEnvironmentVariableA
GlobalAlloc
GetModuleHandleA
GetCurrentProcessId
GetVolumeInformationA
FreeEnvironmentStringsA
LocalFileTimeToFileTime
ContinueDebugEvent
InitializeCriticalSection
WaitForDebugEvent
lstrlenA
FlushInstructionCache
IsBadWritePtr
MultiByteToWideChar
GetDiskFreeSpaceA
LocalSize
GetStringTypeExW
HeapAlloc
FreeEnvironmentStringsW
LeaveCriticalSection
FindFirstFileA
HeapDestroy
QueryPerformanceCounter
IsValidLocale
WritePrivateProfileStructW
EnumDateFormatsA
SetSystemTime
WriteProfileSectionA
GetEnvironmentVariableA
GetNumberFormatW
FindFirstFileExW
GetStringTypeExA
WritePrivateProfileStringA
RtlUnwind
GetDiskFreeSpaceW
TlsAlloc
GetCPInfo
GetTimeFormatA
DuplicateHandle
GetEnvironmentVariableW
DebugActiveProcess
WriteConsoleW
GetEnvironmentStringsW
GetCommandLineW
CreateFileMappingW
GetUserDefaultLCID
CreateFileA
GetFileTime
FlushFileBuffers
VirtualFree
OpenEventA
LoadLibraryA
GetDiskFreeSpaceExW
GetProcessHeaps
GetACP
SetThreadContext
VirtualProtect
GetLastError
GetDateFormatA
OpenFileMappingA
GetModuleFileNameA
FindFirstFileW
GetStdHandle
EnumCalendarInfoExW
HeapReAlloc
VirtualAlloc
ExitProcess
SetLastError
GetVersionExA
WideCharToMultiByte
LoadResource
EnumSystemCodePagesW
GetCurrentProcess
SetThreadAffinityMask
FillConsoleOutputCharacterA

shell32

DragQueryFileW

comdlg32

GetFileTitleW
LoadAlterBitmap
FindTextA
ChooseFontW

user32

IsRectEmpty
GetClassInfoExA
SendMessageW
SystemParametersInfoW
GetUserObjectInformationW
GetWindowThreadProcessId
DestroyAcceleratorTable
DragDetect
ChangeMenuW
GetThreadDesktop
FlashWindow
SetClipboardViewer
FreeDDElParam
MoveWindow
RegisterClassExA
EnumThreadWindows
GetClassNameA
TrackPopupMenuEx
CharNextW
GetFocus
GetKeyboardState
MessageBoxW
GetAltTabInfo
RegisterClipboardFormatW
AppendMenuW
DrawTextExA
SendIMEMessageExA
wvsprintfW
PeekMessageA
CheckRadioButton
SetSysColors
SetScrollRange
DlgDirSelectComboBoxExA
UnregisterClassW
AppendMenuA
LoadBitmapA
GetUpdateRgn
GetClassInfoExW
ChangeClipboardChain
RegisterClassA
ReleaseCapture
GetSystemMenu
IsCharLowerW
DrawTextExW
OpenWindowStationW
EnumDisplayDevicesA
GetKeyboardType
EndMenu
DefWindowProcW
DdePostAdvise
DefMDIChildProcW
ChangeDisplaySettingsExW
DestroyWindow
SwapMouseButton
CreateIconIndirect
DdeDisconnectList
GetWindowContextHelpId
CreateWindowExA
UnionRect
GetMessageA
SetWindowPos
DestroyCaret
DrawEdge
ShowScrollBar
IsWindow
SetProcessWindowStation
ShowWindow
CheckMenuRadioItem
CloseDesktop
DdeAddData
RegisterDeviceNotificationA
CreateDesktopA

gdi32

GetObjectA
DeleteObject
CreateDCW
CreateDIBSection
DeleteDC
GetDeviceCaps

comctl32

ImageList_SetOverlayImage
ImageList_GetImageInfo
ImageList_DrawIndirect
DrawInsert
ImageList_AddIcon
CreateStatusWindowA
ImageList_LoadImageA
ImageList_Replace
ImageList_DrawEx
ImageList_DragEnter
ImageList_Write
InitCommonControlsEx
CreatePropertySheetPage
CreateToolbar
MakeDragList
ImageList_GetImageRect

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adbf5105ec22912b87d7e65b4473bb8c

Headers

File Characteristics

Imports

kernel32

shell32

comdlg32

user32

gdi32

comctl32

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 256KB - Virtual size: 253KB

.data Size: 108KB - Virtual size: 118KB

.rsrc Size: 64KB - Virtual size: 64KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 256KB - Virtual size: 253KB

.data
Size: 108KB - Virtual size: 118KB

.rsrc
Size: 64KB - Virtual size: 64KB