3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118
Size

185KB
MD5

3bbcefa31389862aa36e13e7ba5d662d
SHA1

a4dce14fcfe23b6a78f2bd3a89af889ce74a2b6f
SHA256

43d282bc1c75d5191e08c6ffef6a7169a1fff3b9abbd05b6e21fff93cdb0d86d
SHA512

fcb4639283211c7d55db977ca037a86103a0f7b125cad2fa43579644e72d916249f4e2d384880af7ded04f814e84e2ac21910dba115972bb73c8ad5d489a110b
SSDEEP

3072:G8AkSbDZfP1C+q1MXWWgwuEHxLDHP14DGM8nM2MbbwAYQdQY1xVvCBcxx7K:G8/MZfPPmWhH9iDnYKbYiX1XNxx7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118

Files

3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0fee7c6ff56948cd657ff229b84e1a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendNotifyMessageA
FindWindowA
SetWindowLongA
CharNextA
GetDlgItem
EqualRect
InvalidateRgn
ShowWindow
GetWindowTextLengthA
GetDesktopWindow
GetClassInfoExA
EndPaint
DispatchMessageA
UnregisterClassA
CallWindowProcA
GetParent
RegisterWindowMessageA
CreateDialogParamA
SendMessageTimeoutA
PostMessageA
ReleaseCapture
PostThreadMessageA
MoveWindow
EnumDisplayDevicesA
GetSysColor
GetWindowTextA
GetQueueStatus
SetWindowTextA
wsprintfA
CopyRect
GetWindowLongA
RedrawWindow
IsWindow
SendMessageA
CreateAcceleratorTableA
GetActiveWindow
KillTimer
GetClientRect
SetTimer
wvsprintfA
RegisterClassExA
ReleaseDC
DestroyAcceleratorTable
SetCapture
SetParent
DrawTextA
SetRect
GetWindow
SetFocus
CreateWindowExA
MsgWaitForMultipleObjects
DestroyWindow
IsChild
GetDC
BeginPaint
GetFocus
GetClassNameA
GetWindowRect
LoadCursorA
FillRect
DefWindowProcA
InvalidateRect
PeekMessageA
SetWindowPos

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

advapi32

CryptGetHashParam
CryptAcquireContextA
CryptHashData
CryptReleaseContext
RegQueryInfoKeyA
CryptImportKey
RegOpenKeyExA
CryptCreateHash
RegQueryValueExA
RegEnumValueA
RegSetValueExA
CryptDestroyHash
CryptDestroyKey
RegCreateKeyExA
RegCloseKey
CryptEncrypt
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA

ole32

GetRunningObjectTable
CoUninitialize
OleLockRunning
CoTaskMemRealloc
CreateBindCtx
StgCreateDocfile
CoTaskMemFree
CreateStreamOnHGlobal
CLSIDFromProgID
CoGetClassObject
StringFromGUID2
CoTaskMemAlloc
OleInitialize
OleUninitialize
StgOpenStorage
CoCreateInstance
BindMoniker
CoInitialize
CreateItemMoniker
CoInitializeSecurity
CoSetProxyBlanket
StgIsStorageFile
CLSIDFromString

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

shlwapi

PathFileExistsW
PathCombineW

gdi32

CreateDIBitmap
ExtEscape
SelectObject
DeleteDC
GetObjectA
CreateDIBSection
DeleteObject
GetDIBits
GetDeviceCaps
CreateCompatibleBitmap
CreateFontA
SetStretchBltMode
BitBlt
CreateSolidBrush
RealizePalette
GetStockObject
SelectPalette
StretchDIBits
CreateCompatibleDC
SetBkMode

kernel32

LocalAlloc
GetLongPathNameW
CreateFileMappingA
WriteFile
Sleep
UnmapViewOfFile
GetProcessHandleCount
GetFileSize
CreateFileW
LocalFree
ReadFile
WideCharToMultiByte
MapViewOfFile
EnumResourceTypesA
DisableThreadLibraryCalls
GlobalSize
GetFileAttributesA
GetTickCount
SetFilePointer
GlobalAlloc
CreateFileA
GlobalFree
CloseHandle

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fee7c6ff56948cd657ff229b84e1a7a

Headers

File Characteristics

Imports

user32

wininet

shell32

advapi32

ole32

setupapi

shlwapi

gdi32

kernel32

Sections

.text Size: 106KB - Virtual size: 105KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 72KB - Virtual size: 72KB

.tls Size: 1024B - Virtual size: 364KB

.text
Size: 106KB - Virtual size: 105KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 72KB - Virtual size: 72KB

.tls
Size: 1024B - Virtual size: 364KB