3b43e7a015848f54b00b137ebbbd7830_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3b43e7a015848f54b00b137ebbbd7830_JaffaCakes118
Size

432KB
MD5

3b43e7a015848f54b00b137ebbbd7830
SHA1

959b4671dbd3fba8568c80927705408f2d0ff0f5
SHA256

cfcc696a860f455fb22ef555ba5eefeffd719a5f05d100ba2594d93e27a3d3e5
SHA512

7c2498d12114be4681e59f876529fdc9b8d8d4b10d555023b0e108ea874b89cea337afb8666324cb267e4924f493610bfbcfbaad4ca639ac54ef71d9ff498de6
SSDEEP

12288:7FpTyI3DUtkHYuROlK+UgHFNVU3tLT+0q9h+6eFDNK:7FpmI/HYPK+bVSLq0d6en

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b43e7a015848f54b00b137ebbbd7830_JaffaCakes118

Files

3b43e7a015848f54b00b137ebbbd7830_JaffaCakes118
.exe windows:4 windows x86 arch:x86

23040f214290238f046357e51aab8721

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

FillPath
SelectPalette
SetViewportOrgEx
GetCharABCWidthsW
SetStretchBltMode
GetTextCharset
FloodFill
CreateDIBitmap
GetEnhMetaFilePaletteEntries
GdiGetBatchLimit
DPtoLP
EnumObjects
CreateFontIndirectW
GetTextCharacterExtra
GetTextFaceA
GetMiterLimit
ExtSelectClipRgn
CopyEnhMetaFileA
DrawEscape
GetBkMode
DeleteEnhMetaFile
CopyMetaFileW
CloseMetaFile

kernel32

TlsFree
GetCommandLineW
IsValidLocale
CreateWaitableTimerA
GetCurrentProcessId
SetUnhandledExceptionFilter
HeapFree
Sleep
GetACP
GetLocaleInfoW
SetLastError
GetStringTypeA
GetStdHandle
DeleteCriticalSection
FreeEnvironmentStringsW
GetCPInfo
TlsAlloc
HeapSize
GetStartupInfoW
SetHandleCount
GetFileType
RtlUnwind
IsDebuggerPresent
GetStringTypeW
GetLocaleInfoA
GetModuleHandleW
MultiByteToWideChar
LCMapStringW
TerminateProcess
HeapReAlloc
GetStartupInfoA
HeapDestroy
GetModuleFileNameW
GetCurrentProcess
GetTimeFormatA
InterlockedIncrement
FormatMessageW
GetModuleFileNameA
GetModuleHandleA
GetCurrentThreadId
FreeLibrary
GetTimeZoneInformation
LeaveCriticalSection
SetConsoleCtrlHandler
GetLastError
VirtualFree
GetDateFormatA
GetLogicalDriveStringsA
LCMapStringA
CompareStringW
TlsGetValue
GetOEMCP
TlsSetValue
HeapCreate
WideCharToMultiByte
FindAtomW
UnhandledExceptionFilter
SetEnvironmentVariableA
EnterCriticalSection
LocalUnlock
EnumSystemLocalesA
GetEnvironmentStrings
FreeLibraryAndExitThread
CompareStringA
lstrcpynA
WriteFile
WritePrivateProfileSectionA
GetSystemTimeAsFileTime
GetProcAddress
IsValidCodePage
InterlockedExchange
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
LoadLibraryA
InterlockedDecrement
SetThreadIdealProcessor
VirtualAlloc
GetUserDefaultLCID
GetTickCount
HeapAlloc
VirtualQuery
CreateFileW
lstrcmp
GetCurrentThread
ExitProcess
CopyFileA
ReadConsoleInputA
GetEnvironmentStringsW

user32

WaitMessage
GetQueueStatus
DdeSetUserHandle
OemKeyScan
DdeAccessData
SetScrollRange

comdlg32

PrintDlgW
PageSetupDlgW
GetFileTitleA

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23040f214290238f046357e51aab8721

Headers

File Characteristics

Imports

gdi32

kernel32

user32

comdlg32

Sections

.text Size: 137KB - Virtual size: 136KB

.rdata Size: 9KB - Virtual size: 39KB

.data Size: 280KB - Virtual size: 280KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 137KB - Virtual size: 136KB

.rdata
Size: 9KB - Virtual size: 39KB

.data
Size: 280KB - Virtual size: 280KB

.rsrc
Size: 5KB - Virtual size: 4KB