3a4f166be5aceaedaf5bb7ca781469bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a4f166be5aceaedaf5bb7ca781469bd_JaffaCakes118
Size

188KB
MD5

3a4f166be5aceaedaf5bb7ca781469bd
SHA1

44db5890e5adcb072cf0f9f1a3555017ece6f543
SHA256

70d91e6c2c82363432e9c4f5b9bfe7c1fe69dbe341399a2f60a190678c036fe2
SHA512

b24479dddb15397db4110cf1ae0b6010eb459b16b38efcf6b03c66faa9691cb78c76e9d0f237e3ac03cb29751b48363e8d63d2ef19a6cb37ebad37c044227b12
SSDEEP

3072:zSTcczBwTlF19NhLz9TT/2OAkDIgtI9uiKv98NCzQ+p75N0qkmrM2nPFf1IS:2AqyFhtTTkEI9uiKv6IcaN3dImPFf2S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a4f166be5aceaedaf5bb7ca781469bd_JaffaCakes118

Files

3a4f166be5aceaedaf5bb7ca781469bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

682f13c6843b2b2639abff3ee7919667

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
TlsFree
LocalLock
GetStartupInfoA
GetSystemInfo
GlobalSize
lstrcpynW
FindClose
VirtualAllocEx
LoadLibraryA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
VirtualQuery
InterlockedExchange
RtlUnwind
GetCPInfo
WriteConsoleA
GetACP
IsBadWritePtr
HeapReAlloc
HeapAlloc
FlushFileBuffers
SetStdHandle
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
CloseHandle
HeapFree
SetFilePointer
GetLastError
GetCurrentProcess
TerminateProcess
ExitProcess
GetModuleHandleA
WideCharToMultiByte
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetProcAddress
WaitForMultipleObjects
GetVersionExW
CompareStringW
SetUnhandledExceptionFilter
VirtualAlloc
SetHandleCount
CreateDirectoryW
HeapSize
GlobalLock
GetCurrentThreadId
SizeofResource
CreatePipe
LeaveCriticalSection
GetUserDefaultLCID
GetCommandLineA
GetFullPathNameW
GetDateFormatA
LCMapStringW
TlsSetValue
GetVersionExA
CreateThread
MulDiv
GetDriveTypeW
GetDriveTypeA
GetTempPathW
QueryPerformanceCounter
GetLongPathNameW
GetFileType
FindFirstFileW
GetTimeFormatA
MultiByteToWideChar
CreateEventW
GetOEMCP
VirtualProtect

user32

MonitorFromWindow
CreatePopupMenu
WindowFromPoint
CallWindowProcA
DrawTextW
TranslateMessage
SetCursor
MessageBeep
LoadIconW
SetScrollInfo
GetCapture
GetKeyState
EnableMenuItem
IsZoomed
GetWindowLongW
IsDialogMessageA
GetClassNameW
DeferWindowPos
DrawFocusRect
GetDlgItemInt
CharUpperW
IsChild
ShowWindow
GetMenuItemID
GetMessageA
GetMessageW
MessageBoxW
DrawFrameControl
DialogBoxParamW
CallWindowProcW
GetSubMenu
DispatchMessageW
RemoveMenu
SetWindowPos
EnableWindow
BeginDeferWindowPos

gdi32

SetBkMode
GetROP2
GetPixel
SetBrushOrgEx
ExtTextOutW
SelectObject
OffsetWindowOrgEx
MoveToEx
CreateHatchBrush
CreateSolidBrush
CreatePatternBrush
EnumFontFamiliesExW
CreateBitmap
GetTextExtentPointW
SetTextAlign
StartPage
GetDeviceCaps
StartDocW
DeleteObject
RemoveFontResourceW
PatBlt
GetStockObject
SaveDC
Rectangle
GetTextMetricsW
GetTextExtentPoint32W
AddFontResourceW
CreatePen
SetWindowOrgEx
LineTo

comdlg32

GetOpenFileNameW
ReplaceTextA
GetFileTitleA
FindTextW
PrintDlgA
ChooseColorW
FindTextA
ChooseFontA
GetSaveFileNameA
ChooseFontW
PrintDlgW
ReplaceTextW
GetOpenFileNameA
PageSetupDlgW

advapi32

RegCreateKeyA
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExA
RegEnumKeyExW
RegDeleteKeyW

Sections

.text
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 123KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

682f13c6843b2b2639abff3ee7919667

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

Sections

.text Size: 26KB - Virtual size: 26KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 123KB - Virtual size: 375KB

.rsrc Size: 29KB - Virtual size: 32KB

.text
Size: 26KB - Virtual size: 26KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 123KB - Virtual size: 375KB

.rsrc
Size: 29KB - Virtual size: 32KB