3b68a93c5f90270fbc357ce53fc7c78c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b68a93c5f90270fbc357ce53fc7c78c_JaffaCakes118
Size

604KB
MD5

3b68a93c5f90270fbc357ce53fc7c78c
SHA1

f1afea844283ae0b94847e19654650022810058a
SHA256

9403073e88ee7e2824753d9a0f013049ca2b2ff22fdc9f43e3094e4eff017c7d
SHA512

2243024977519e7cdae458a5eabeba0af4204fce137a8b1764ccfec7d019194ebe6d71d4f6583cdfcc6449d844628d599bea8dc3ac88d16c0de332940b750610
SSDEEP

12288:Xd+ONS3QL/vVPDjqEfSQe7eNAOCwCSKygVjS4kRI6o:N+OWQrvVr+EfSQeKAnVSb0QI6o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b68a93c5f90270fbc357ce53fc7c78c_JaffaCakes118

Files

3b68a93c5f90270fbc357ce53fc7c78c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b48b52acab44f85a7aa67a5ced50527

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFile

comctl32

CreatePropertySheetPage
InitCommonControlsEx
ImageList_Duplicate
ImageList_SetImageCount
ImageList_GetImageRect

user32

GetClipboardViewer
RemoveMenu
DestroyWindow
BroadcastSystemMessageW
MessageBoxExA
MessageBoxIndirectA
DefWindowProcA
CreateWindowExW
CloseWindow
wvsprintfW
IsWindow
RegisterClassA
GetMenuItemID
CharToOemA
FindWindowW
FlashWindow
RegisterClassExA
SetTimer
MessageBoxA
GetClientRect
GetInputDesktop
IsDialogMessageW
DialogBoxIndirectParamW
DlgDirSelectExA
GetKeyboardLayoutNameW
CallWindowProcA
ShowWindow
UnionRect
GetMenuBarInfo
GetKeyboardLayout
IsCharLowerW
wsprintfW
ModifyMenuW
CallMsgFilter
LoadImageA
GetKeyboardType
EnumDisplaySettingsExA
FillRect
DialogBoxParamA
GetMenu
ChangeDisplaySettingsW
ActivateKeyboardLayout
CallMsgFilterA
GetLastActivePopup
GetKBCodePage
SetSystemCursor
GetClipCursor
DrawMenuBar
EndDialog
CheckMenuItem
WinHelpW

kernel32

GetEnvironmentStringsW
EnterCriticalSection
TlsFree
LCMapStringA
IsBadWritePtr
LoadLibraryA
OpenFileMappingW
EnumTimeFormatsW
GetThreadTimes
HeapDestroy
GetFileType
LCMapStringW
SetStdHandle
TlsSetValue
GetLogicalDriveStringsW
SetLocaleInfoA
HeapAlloc
RemoveDirectoryA
GetCurrentThreadId
WriteConsoleW
SetFilePointer
GlobalFindAtomA
GetStartupInfoA
FreeEnvironmentStringsW
GetShortPathNameW
SetLastError
GetModuleFileNameA
GetEnvironmentStrings
VirtualFree
VirtualQuery
DeleteCriticalSection
GetCommandLineA
CreateDirectoryW
WaitForDebugEvent
SetConsoleScreenBufferSize
GetCurrentProcess
GetLocalTime
SetEnvironmentVariableA
WideCharToMultiByte
LocalUnlock
UnhandledExceptionFilter
GetStdHandle
QueryPerformanceCounter
GetProcAddress
GetThreadLocale
TlsGetValue
CompareStringA
VirtualAlloc
FlushInstructionCache
GetWindowsDirectoryA
RtlMoveMemory
CreateMailslotA
MultiByteToWideChar
FlushFileBuffers
GetLastError
LocalReAlloc
TlsAlloc
CloseHandle
DebugBreak
HeapCreate
WriteFile
TerminateProcess
GetDiskFreeSpaceW
GetStringTypeA
InitializeCriticalSection
CreateSemaphoreW
GetCPInfo
GetTimeZoneInformation
WriteProfileSectionW
GetTickCount
TransactNamedPipe
GetCompressedFileSizeW
HeapFree
OutputDebugStringA
LeaveCriticalSection
GetProcAddress
SetHandleCount
SetFileAttributesA
GetSystemTimeAdjustment
GetDriveTypeW
GetVersion
CreateMutexA
OpenMutexA
InterlockedDecrement
GetOEMCP
ExpandEnvironmentStringsW
GetCurrentProcessId
SystemTimeToFileTime
InterlockedExchange
FreeEnvironmentStringsA
GetModuleHandleA
HeapReAlloc
ReadFile
InterlockedIncrement
GetTempPathA
EnumSystemLocalesW
InterlockedExchangeAdd
CompareStringW
GetACP
IsBadReadPtr
EnumSystemCodePagesW
GetSystemTime
GetStringTypeW
ExitProcess
FindAtomA
RtlUnwind
GetCurrentThread
GetSystemTimeAsFileTime
OpenSemaphoreA

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b48b52acab44f85a7aa67a5ced50527

Headers

File Characteristics

Imports

shell32

comctl32

user32

kernel32

Sections

.text Size: 84KB - Virtual size: 80KB

.rdata Size: 240KB - Virtual size: 239KB

.data Size: 112KB - Virtual size: 120KB

.rsrc Size: 164KB - Virtual size: 160KB

.text
Size: 84KB - Virtual size: 80KB

.rdata
Size: 240KB - Virtual size: 239KB

.data
Size: 112KB - Virtual size: 120KB

.rsrc
Size: 164KB - Virtual size: 160KB