3bb1bc849240c9c6e101b506cac3ff88_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3bb1bc849240c9c6e101b506cac3ff88_JaffaCakes118
Size

141KB
MD5

3bb1bc849240c9c6e101b506cac3ff88
SHA1

e3ce9654132ddf21da2d8e04e90b17d3f1785f94
SHA256

d523a199d3ca9aa174d88ce671156de209ebaac94882e8ceb3d4ec7d5c17598e
SHA512

e1908e69116f65108216937a5c5a0534314945d42fc3c4a54932a08e70b370ed9e3bbe26ee00c8f685c009f99fcdcac5f4a553ecbd9e2cf91ed61b13a268e264
SSDEEP

1536:sOOe1DuP9Zo5Coebw2gyeOGFUbRKcL5lzsUMfWlfQAw4JZedKxTtj3dsifaICGaR:sS0F2wt7M2L3Y+wAVpdsLGaek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bb1bc849240c9c6e101b506cac3ff88_JaffaCakes118

Files

3bb1bc849240c9c6e101b506cac3ff88_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a56d2704ed1c8c9842aac46fe7a7a698

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
GetCurrentDirectoryA
VirtualAlloc
GetLastError
lstrcpynA
OutputDebugStringA
TerminateThread
LoadLibraryW
GetStartupInfoW
VirtualFree
CreateFiberEx
GetACP
SetEvent
GetConsoleMode
GetModuleFileNameW
SetHandleCount
GetEnvironmentStringsW
GetThreadLocale
GetStdHandle
CloseHandle
GetModuleHandleA
GetCurrentProcess
ExitThread
GlobalAlloc
EndUpdateResourceA
GetProcAddress
lstrcpyW
FreeEnvironmentStringsA
DosDateTimeToFileTime
GetTimeFormatW
VirtualProtect
CreateFiber
FileTimeToSystemTime
GetFileAttributesA

msvcrt

wcstok
atoi
memset
toupper
printf
_wtoi
wcsrchr
wcsncpy
memcpy
strncpy
wcstol
_wcsnicmp
_wcmdln
towupper
_XcptFilter
__CxxFrameHandler
wcscmp
_wcsicmp
swscanf
tmpnam
__setusermatherr

user32

ReleaseDC
RegisterClassA
wsprintfW
GetCursorPos
DestroyWindow
LoadCursorA
DispatchMessageW
SetScrollPos
IsWindow
MapWindowPoints
LoadImageW
SendMessageA
DialogBoxParamA
GetMenuItemCount
CheckDlgButton
GetParent
ClientToScreen
BeginPaint
SendMessageW
GetProcessWindowStation
UnregisterClassW
CopyRect
LoadCursorW
LoadMenuW
SetCapture
ScreenToClient
ReleaseCapture

gdi32

CreateBitmap
CreateFontIndirectW
TranslateCharsetInfo
SetTextColor
CreateCompatibleDC
StretchBlt
SetBkMode
RestoreDC
Rectangle
PatBlt

opengl32

glColor4f
glTexCoord2dv
glFogfv
GlmfBeginGlsBlock
glColor4i
wglShareLists
glColor3ui
glStencilMask
glColor4d
glTexCoord2d

Exports

Exports

VilJlhuQpanqTzh
YaNgetjMbklbzIawgzWns
AeKzzenVyzzq

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a56d2704ed1c8c9842aac46fe7a7a698

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.crt Size: 512B - Virtual size: 72B

.rdata Size: 3KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 115B

.data Size: 57KB - Virtual size: 57KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 512B - Virtual size: 262B

.text
Size: 13KB - Virtual size: 13KB

.crt
Size: 512B - Virtual size: 72B

.rdata
Size: 3KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 115B

.data
Size: 57KB - Virtual size: 57KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 512B - Virtual size: 262B