3a46ddcaf1f1eda0add77ce9415b5354_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a46ddcaf1f1eda0add77ce9415b5354_JaffaCakes118
Size

717KB
MD5

3a46ddcaf1f1eda0add77ce9415b5354
SHA1

f2d8c16486367262a82584cd9b5664dd6627a2e5
SHA256

4ee80cedef893d68dc27fe85758190213200a62157176faac4045c67a86e4702
SHA512

0183bf0e33881db2db5398bd634b75ad0a634f51b3fc3ce668280570d29b88a48712508b8d95c8371670d51076d567b5bf0e78cc9051411c7b5b06b1b920f970
SSDEEP

12288:lxwTtYoe7jW/0ODcaFJSP6SVty1m4qUurSswBsaMw+1ISQLQSHET8h16i4bX6yuB:lJOpi6EU3swBzOSL9ET8h16i4bX6yua2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a46ddcaf1f1eda0add77ce9415b5354_JaffaCakes118

Files

3a46ddcaf1f1eda0add77ce9415b5354_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8fb1c72c529d8fce7b36df0baa20a5d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\fhzlkwej\tyi.pdb

Imports

user32

SetParent
IsDlgButtonChecked
CreateIcon
BroadcastSystemMessage
ShowCursor
GetMessageTime
RemovePropW
DispatchMessageW
GetSystemMenu
GetOpenClipboardWindow
CreateWindowExW
IsIconic
ScrollWindowEx
EnumWindows
DlgDirListComboBoxA
RegisterClassExA
DdeCmpStringHandles
IsCharLowerW
TranslateAcceleratorA
ChildWindowFromPoint
MapVirtualKeyA
ModifyMenuW
ChangeClipboardChain
MessageBoxIndirectW
ShowWindow
LockWindowUpdate
SetClipboardData
DrawCaption
DefWindowProcW
GetKeyboardLayoutNameW
SetFocus
GetCaretBlinkTime
GetGuiResources
GetWindowWord
DrawAnimatedRects
DlgDirListA
SetCursorPos
DdeSetQualityOfService
GetUserObjectSecurity
RegisterClassA
GetDlgItem
ReplyMessage
GetComboBoxInfo
GetClassInfoExW
GetNextDlgTabItem
ArrangeIconicWindows
GetKeyState
CreateWindowStationA
EnumDisplaySettingsExA
SetDlgItemTextA
SetMenuItemBitmaps
WaitMessage
DdeFreeDataHandle
CreateDialogParamA
GetDialogBaseUnits
MessageBoxW
AnimateWindow
DrawTextExW
SetDebugErrorLevel
TranslateAcceleratorW
GetPropW
LookupIconIdFromDirectory
BroadcastSystemMessageW
GetCursor
SetScrollPos
DestroyWindow
DialogBoxIndirectParamW
GetClipboardOwner
GetWindow
DdePostAdvise
UnregisterClassW

comctl32

CreatePropertySheetPageW
InitCommonControlsEx
ImageList_GetImageInfo
CreateToolbarEx
ImageList_SetBkColor
ImageList_LoadImageW
DrawStatusTextW
ImageList_Read
InitMUILanguage
ImageList_DrawEx
ImageList_Duplicate
DrawStatusTextA
ImageList_SetIconSize
ImageList_SetImageCount
DestroyPropertySheetPage

kernel32

HeapFree
EnumSystemLocalesA
ReadFile
EnumResourceTypesW
QueryPerformanceCounter
FindFirstFileExW
GetDateFormatA
WritePrivateProfileStructA
RtlUnwind
IsValidLocale
GetCommandLineW
GetTickCount
GetShortPathNameA
LoadResource
CreateSemaphoreA
UnlockFileEx
GetCurrentThreadId
TlsGetValue
SetLocaleInfoW
IsValidCodePage
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
VirtualProtect
GetCurrencyFormatA
FlushFileBuffers
WideCharToMultiByte
GetStartupInfoW
GetFileType
WaitForDebugEvent
HeapSize
VirtualFree
GetStdHandle
GetProcessHeaps
lstrcpynA
EnumResourceNamesW
HeapDestroy
CommConfigDialogW
GetTimeFormatA
TerminateProcess
LCMapStringW
FreeResource
GetNumberFormatA
GlobalFix
GlobalHandle
SetWaitableTimer
GetCurrentProcess
SetStdHandle
GetACP
GetSystemInfo
HeapCreate
SetConsoleTextAttribute
DuplicateHandle
FillConsoleOutputAttribute
SetComputerNameA
IsBadWritePtr
SetConsoleScreenBufferSize
GetEnvironmentStrings
LeaveCriticalSection
GetDateFormatW
SetLastError
EnterCriticalSection
GetFileSize
lstrcatW
TlsAlloc
InterlockedExchange
OpenMutexA
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetModuleHandleA
GetCurrentThread
DeleteCriticalSection
GetLocaleInfoW
GetConsoleScreenBufferInfo
GetStringTypeA
MoveFileW
MultiByteToWideChar
GetUserDefaultLCID
HeapAlloc
GetModuleFileNameA
EnumTimeFormatsW
LoadLibraryA
GetLogicalDrives
TlsFree
GetCommandLineA
VirtualLock
GetCurrentProcessId
WriteConsoleOutputW
GetOEMCP
OutputDebugStringW
GetSystemDefaultLangID
LoadModule
LCMapStringA
CloseHandle
InitializeCriticalSection
SetConsoleTitleW
EnumResourceLanguagesW
GetLastError
SetFilePointer
GetModuleFileNameW
VirtualQuery
GetStringTypeExW
ReleaseMutex
SetSystemTime
CreateWaitableTimerW
GetTimeZoneInformation
LocalLock
CompareStringA
CreateMutexA
SetHandleCount
GetCPInfo
SetFileTime
GetDiskFreeSpaceExW
GetLocaleInfoA
GetEnvironmentStringsW
HeapReAlloc
ExitProcess
GetStringTypeW
VirtualAlloc
GetStartupInfoA
GetNamedPipeHandleStateA
GetProcAddress
GetEnvironmentVariableW
CompareStringW
TlsSetValue
GetVersionExA
LocalHandle
SetEnvironmentVariableA
WriteFile

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 450KB - Virtual size: 450KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 137KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fb1c72c529d8fce7b36df0baa20a5d2

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

kernel32

Sections

.text Size: 85KB - Virtual size: 85KB

.rdata Size: 450KB - Virtual size: 450KB

.data Size: 137KB - Virtual size: 156KB

.rsrc Size: 43KB - Virtual size: 42KB

.text
Size: 85KB - Virtual size: 85KB

.rdata
Size: 450KB - Virtual size: 450KB

.data
Size: 137KB - Virtual size: 156KB

.rsrc
Size: 43KB - Virtual size: 42KB