3f435c6cd2e51d5c98dcc13e95ab84b1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3f435c6cd2e51d5c98dcc13e95ab84b1_JaffaCakes118
Size

120KB
MD5

3f435c6cd2e51d5c98dcc13e95ab84b1
SHA1

5eea47af6705079053318d89cc1a324c7be7d3a3
SHA256

d0cdd5c94361774669e26836ee087316003d50b6af12c14e48588a37dbaa6133
SHA512

bae216b672183a6e439fd5237bce7b57f13f30d71e3efa42b4709fefce7ef5f8645327fd2a6781d47518d3931a22b2223b52d718a46698b998c65b833ca9cf06
SSDEEP

3072:9CXxLG0eIKu5EaBomawJi096+bocEXbVzoA12g:qIlmd9BolZn19

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f435c6cd2e51d5c98dcc13e95ab84b1_JaffaCakes118

Files

3f435c6cd2e51d5c98dcc13e95ab84b1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce9bf2f6f70dd584216347739daec9eb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeResource
LockResource
GlobalLock
GlobalAlloc
LoadResource
SizeofResource
FindResourceA
CreateDirectoryA
FindFirstFileA
MoveFileA
CreateThread
TerminateThread
ResumeThread
SuspendThread
GetVersionExA
FindClose
FindNextFileA
SetEndOfFile
LoadLibraryA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
MultiByteToWideChar
GlobalUnlock
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WideCharToMultiByte
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
HeapSize
TerminateProcess
GetProcAddress
SetFilePointer
GlobalFree
CreateFileA
GetFileSize
CloseHandle
lstrcpynA
OutputDebugStringA
DebugBreak
lstrlenA
GetTempPathA
GetTempFileNameA
GetModuleFileNameA
CopyFileA
Sleep
CreateProcessA
DeleteFileA
InterlockedDecrement
GetFileType
GetStdHandle
SetHandleCount
GetLastError
GetCurrentProcess
FlushInstructionCache
DeleteCriticalSection
HeapDestroy
InitializeCriticalSection
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
ReadFile
WriteFile
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapAlloc
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
InterlockedIncrement
GetCPInfo

user32

SetWindowLongA
SetFocus
ShowWindow
GetDlgItem
SetWindowTextA
SendMessageA
DestroyWindow
GetSystemMetrics
SetWindowPos
MapWindowPoints
DefWindowProcA
GetActiveWindow
GetClientRect
SystemParametersInfoA
GetWindowRect
GetWindow
DialogBoxParamA
LoadImageA
GetParent
GetWindowLongA
wvsprintfA
ClientToScreen
AdjustWindowRectEx
MoveWindow
GetDlgCtrlID
EnableWindow
GetWindowTextA
MessageBoxA
CopyImage
PostMessageA
EndPaint
FillRect
BeginPaint
IsDlgButtonChecked
EndDialog
LoadStringA
CharNextA

gdi32

GetTextMetricsA
GetTextExtentPointA
CreateFontW
CreateCompatibleDC
SelectObject
BitBlt
RestoreDC
DeleteDC
SetBkMode
SetTextColor
SetBrushOrgEx
GetObjectA
CreateFontIndirectA
CreatePatternBrush
DeleteObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA

shell32

ShellExecuteA

ole32

CoUninitialize
CoInitialize
CreateStreamOnHGlobal

oleaut32

OleLoadPicture

wininet

InternetCloseHandle
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
InternetReadFile
HttpAddRequestHeadersA

comctl32

InitCommonControlsEx

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce9bf2f6f70dd584216347739daec9eb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

wininet

comctl32

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 12KB - Virtual size: 16KB

Shared Size: 4KB - Virtual size: 4B

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 12KB - Virtual size: 16KB

Shared
Size: 4KB - Virtual size: 4B

.rsrc
Size: 32KB - Virtual size: 29KB