3c71875339fd5862b58ab4987025fc28_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3c71875339fd5862b58ab4987025fc28_JaffaCakes118
Size

166KB
MD5

3c71875339fd5862b58ab4987025fc28
SHA1

f06e37642c05ea0f0ef3dfce64beb4b06483ad8c
SHA256

149d90dae627d6d0c83a71f75b732a4a5cf47df768323fb90d9e2de0fc02fbdc
SHA512

5647870e68114aef81b7c26a8f12a9310f523613b8d39fefc1d48a84e3ff1acdb20043c63becc509bc858854d4488ea9ec1c80696f3bd0c1f32fa24cc02378e7
SSDEEP

3072:wFLqIA5uCOTICqmhdH+qKFqbEZvwur8Jd9eyrWqdjvyka5WTN:wFOIAAxqm2q6qbENedjvyka5A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c71875339fd5862b58ab4987025fc28_JaffaCakes118

Files

3c71875339fd5862b58ab4987025fc28_JaffaCakes118
.exe windows:4 windows x86 arch:x86

287ba3dd372458aeebe15ff57fdcf040

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

shell32

ShellExecuteW
SHGetSpecialFolderLocation
SHGetPathFromIDListW

msvfw32

ICInfo

gdi32

GetDeviceCaps
CreateFontIndirectW
DeleteObject

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoTaskMemRealloc
CoInitialize

user32

GetWindow
RegisterClassExW
SetWindowTextW
BeginPaint
GetDlgItem
SetCapture
LoadCursorW
GetClassInfoExW
EndPaint
GetDC
GetClientRect
GetWindowTextLengthW
GetParent
DispatchMessageW
MessageBoxW
PeekMessageW
GetWindowRect
CreateWindowExW
GetDlgItemTextW
DestroyWindow
TranslateMessage
SetDlgItemTextW
GetWindowInfo
SystemParametersInfoW
SetWindowPos
MapWindowPoints
EndDialog

kernel32

lstrcmpA
RaiseException
GetConsoleMode
GetConsoleOutputCP
LoadLibraryExW
WriteConsoleW
GetCurrentProcess
ReadFile
GetStringTypeA
LocalAlloc
GetSystemTimeAsFileTime
GetLocaleInfoA
GetVDMCurrentDirectories
DeleteFileW
GetModuleFileNameA
LoadLibraryW
GetModuleFileNameW
GetCurrentThreadId
GetStdHandle
GetProcessHeap
GetCPInfo
CreateFileA
WaitForSingleObject
GetStartupInfoA
LCMapStringW
GetModuleHandleW
LoadLibraryA
HeapReAlloc
GetThreadLocale
GetACP
DeleteCriticalSection
TlsGetValue
ExitProcess
CreateFileW
InterlockedDecrement
CreateProcessW
WritePrivateProfileSectionW
LCMapStringA
GetProcessHandleCount
LocalFree
GetVersion
GetVersionExW
VirtualAlloc
GetEnvironmentStringsW
GetOEMCP
EnumResourceNamesA
MulDiv
QueryPerformanceCounter
GetEnvironmentStrings
SetLastError
FlushInstructionCache
GetProcAddress
RtlUnwind
FreeEnvironmentStringsA
GetFileAttributesW
InterlockedCompareExchange
GetCommandLineA
GetLastError
TlsFree
FlushFileBuffers
WriteConsoleA
GetSystemDirectoryW
SetStdHandle
GetStringTypeW
GetCommandLineW
SetHandleCount
CreateFileMappingW
FreeEnvironmentStringsW
TlsSetValue
HeapCreate
LoadResource
UnhandledExceptionFilter
IsDebuggerPresent
lstrcmpiW
WideCharToMultiByte
HeapFree
lstrlenA
HeapAlloc
GetFileSize
GetModuleHandleA
LeaveCriticalSection
HeapDestroy
HeapSize
CopyFileW
GetFileType
SetUnhandledExceptionFilter
Sleep
GetVersionExA
SetFilePointer
FindResourceW
FreeLibrary
SizeofResource
CreateSemaphoreW
VirtualFree
CloseHandle
GetConsoleCP
GetDriveTypeW
InterlockedExchange
IsProcessorFeaturePresent
TlsAlloc
InitializeCriticalSection
GetStartupInfoW
WriteFile
InterlockedIncrement
LockResource
GetTickCount
GetCurrentProcessId
lstrlenW

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idive
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

287ba3dd372458aeebe15ff57fdcf040

Headers

File Characteristics

Imports

version

shell32

msvfw32

gdi32

ole32

user32

kernel32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 71KB - Virtual size: 70KB

.idive Size: 1024B - Virtual size: 376KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 71KB - Virtual size: 70KB

.idive
Size: 1024B - Virtual size: 376KB