3f02dbb537d4448901ddaad53290fd79_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3f02dbb537d4448901ddaad53290fd79_JaffaCakes118
Size

163KB
MD5

3f02dbb537d4448901ddaad53290fd79
SHA1

446a95c8a39fe23b90f2c30f2539d91a9cbd4e4f
SHA256

fc9d8d6774d36a2fefdd457942f592000ac8fcffa45d387a0a0af5cc94fc9d8b
SHA512

c5e196342a7e56f34054618eafc4b319cad7bb1baf7f1058058b6c7653fe89803fe944d2a94ed7c93eca771b119b5b3502ce9c36ec83e45ffa0898aa34bc4527
SSDEEP

3072:jlBF1CObc462TPYUwfHkyCzooR8IHHNsTxi2HePfrTjdxtkxE2:pP1COb02TPh4HktznRdNsThevSxp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f02dbb537d4448901ddaad53290fd79_JaffaCakes118

Files

3f02dbb537d4448901ddaad53290fd79_JaffaCakes118
.exe windows:1 windows x86 arch:x86

c5fc9800b9f015733c96521b01d2ac66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
DuplicateHandle
FileTimeToLocalFileTime
MapViewOfFile
InterlockedDecrement
GlobalLock
QueryPerformanceFrequency
VirtualFree
lstrcpyA
GetTimeFormatA
IsBadStringPtrW
GetDateFormatA
GetStartupInfoA
LCMapStringW
GetCurrentDirectoryA
WaitForMultipleObjects
SetUnhandledExceptionFilter
LoadResource
GetOEMCP
TlsFree
FindResourceA
WriteFile
GetDriveTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCommandLineA
GetFileAttributesA
IsBadStringPtrA
ExitThread
GetModuleHandleA
CreateEventA
CreateProcessA
GetProcessWorkingSetSize
Module32First
GlobalMemoryStatus
GetACP
TlsAlloc
Sleep
FormatMessageA
HeapReAlloc
GetConsoleMode
GetExitCodeThread

user32

PeekMessageA
OffsetRect
ReleaseCapture
InvalidateRect
GetWindowPlacement
TrackPopupMenuEx
LoadAcceleratorsA
LoadStringA
GetWindowTextA
LoadMenuA
GetClassNameA
GetWindowRect
CreateIconIndirect
PostQuitMessage
SendMessageTimeoutA
IsDlgButtonChecked
ScreenToClient
PtInRect
RedrawWindow
IsWindowVisible
GetClassLongA
LoadImageA
IsIconic
AppendMenuA
FrameRect
ModifyMenuA
IntersectRect
GetWindowDC
MsgWaitForMultipleObjects
GetSysColorBrush
CreateDialogParamA
GetClientRect
GetDlgItem
EndDeferWindowPos
GetWindowLongA
UpdateWindow
GetMessageA
DrawEdge

msvcrt

__p__commode
__set_app_type
memcpy
__setusermatherr
exit
_controlfp
_XcptFilter
__p__fmode
_initterm
__getmainargs
_acmdln
_except_handler3
_exit
_adjust_fdiv

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5fc9800b9f015733c96521b01d2ac66

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 130KB - Virtual size: 130KB

.data Size: 2KB - Virtual size: 56KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 130KB - Virtual size: 130KB

.data
Size: 2KB - Virtual size: 56KB

.rsrc
Size: 512B - Virtual size: 164B