3f10e1dc09f2a77f5da8f6fea0f4e078_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3f10e1dc09f2a77f5da8f6fea0f4e078_JaffaCakes118
Size

549KB
MD5

3f10e1dc09f2a77f5da8f6fea0f4e078
SHA1

2b4aadda88c2344a4a7853a6fcf7f28fc55f430b
SHA256

d866410405e1a96717fec3c04f30f7373aaaf1cf04222d9b8f13e1aa2a5e9d03
SHA512

dda08e50b88a5f963c952ac00cb02c6d4f4d376728bedd9e6f2a05351223dcb2dff4fb3a7681e8abd30cb44f91a6cfc8484e6e953821478289081a611a1cb3da
SSDEEP

12288:U9Up84QvPw/7OOiYkAhSfVY+Wx/QXxVync27n+SW2aQedo/mss:U9UW4Qv8aOpkVY7qnyc234o/Rs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f10e1dc09f2a77f5da8f6fea0f4e078_JaffaCakes118

Files

3f10e1dc09f2a77f5da8f6fea0f4e078_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5a00b196b52f836c4b03797bedf91491

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterDeviceNotification
CheckRadioButton
RegisterClassW
GetDesktopWindow
PostMessageA
DdeCreateStringHandleW
MessageBoxW
SetWindowPlacement
RegisterClassA
SetMessageQueue
HideCaret
DdePostAdvise
GetMenuItemInfoA
CopyIcon
SetPropW
IsCharUpperA
IsClipboardFormatAvailable
LoadStringW
InsertMenuW
ShowWindow
CreateWindowExW
DestroyWindow
TranslateAcceleratorA
RegisterClassExA
DefWindowProcA
IsCharAlphaNumericW
MonitorFromWindow

kernel32

CommConfigDialogA
GlobalAddAtomA
EnumCalendarInfoExW
HeapFree
CloseHandle
GetFileType
CreateSemaphoreW
ReadConsoleW
LocalSize
CompareStringW
GetModuleFileNameA
GetCurrentThread
CompareStringA
GetCurrentThreadId
lstrcmpiW
SetHandleCount
LCMapStringW
GetLocaleInfoW
HeapCreate
HeapReAlloc
GetTickCount
EnumSystemLocalesA
GetStartupInfoW
SetConsoleCursorInfo
GetCurrentProcess
DuplicateHandle
GetCurrentProcessId
GetSystemDefaultLangID
LocalCompact
GetLocaleInfoA
EnumDateFormatsA
SetLastError
WritePrivateProfileSectionA
VirtualLock
OpenMutexA
InitializeCriticalSection
DebugBreak
SetFilePointer
QueryPerformanceCounter
GetThreadPriority
HeapSize
FindNextChangeNotification
GetDateFormatA
GetThreadTimes
Sleep
GetCommandLineA
GlobalSize
GetCommandLineW
SetComputerNameW
GlobalAddAtomW
InterlockedExchange
SetLocalTime
ExitProcess
UnmapViewOfFile
IsBadWritePtr
EnumCalendarInfoW
ReadConsoleOutputA
GetEnvironmentStringsW
LCMapStringA
FindNextFileA
GetProcAddress
OpenWaitableTimerA
GlobalFix
WriteProfileSectionA
OpenEventA
GetNamedPipeHandleStateW
SetStdHandle
lstrlenW
GetStringTypeW
GetProfileSectionA
IsValidCodePage
GetPrivateProfileSectionA
GetCPInfo
CreateMutexA
DeleteCriticalSection
IsValidLocale
GetUserDefaultLCID
LeaveCriticalSection
TlsFree
ReleaseMutex
GetModuleFileNameW
FreeEnvironmentStringsW
VirtualFree
LockFileEx
TlsSetValue
lstrcmpi
VirtualAlloc
VirtualProtect
TransactNamedPipe
RtlUnwind
GetEnvironmentStrings
WideCharToMultiByte
GetProfileSectionW
EnumResourceTypesA
GetExitCodeProcess
SetFileAttributesW
FreeEnvironmentStringsA
IsDebuggerPresent
MultiByteToWideChar
TerminateProcess
GlobalUnfix
LocalReAlloc
GetVersionExW
GetVolumeInformationA
lstrcpyA
lstrcpy
HeapAlloc
GetThreadLocale
GetLastError
GetModuleHandleA
EnterCriticalSection
SetThreadAffinityMask
GetTimeZoneInformation
MoveFileExW
GetStartupInfoA
LoadLibraryA
FileTimeToSystemTime
ReadFile
LoadModule
GetSystemTimeAsFileTime
GetTimeFormatA
OpenFileMappingW
SetEnvironmentVariableA
lstrcpyW
WriteFile
SetConsoleActiveScreenBuffer
LocalUnlock
VirtualProtectEx
UnhandledExceptionFilter
TlsAlloc
GetTempPathW
GetCurrencyFormatW
HeapDestroy
GetOEMCP
SetSystemTime
lstrcmpiA
CreateProcessA
VirtualQuery
GetSystemInfo
GetStdHandle
GetStringTypeA
GetACP
FlushFileBuffers
GetVersionExA
WriteConsoleW
TlsGetValue

shell32

SHGetNewLinkInfo
ShellExecuteExA
SHGetSpecialFolderPathW
DragQueryFileW
ExtractIconA

comctl32

ImageList_AddIcon
InitCommonControlsEx
CreateToolbarEx

Sections

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 251KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a00b196b52f836c4b03797bedf91491

Headers

File Characteristics

Imports

user32

kernel32

shell32

comctl32

Sections

.text Size: 153KB - Virtual size: 153KB

.rdata Size: 251KB - Virtual size: 250KB

.data Size: 111KB - Virtual size: 132KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 153KB - Virtual size: 153KB

.rdata
Size: 251KB - Virtual size: 250KB

.data
Size: 111KB - Virtual size: 132KB

.rsrc
Size: 32KB - Virtual size: 31KB