3c7ef5373859d83c8b5d8f1922965306_JaffaCakes118

General

Target

3c7ef5373859d83c8b5d8f1922965306_JaffaCakes118
Size

174KB
MD5

3c7ef5373859d83c8b5d8f1922965306
SHA1

aa13159387de0e74f410f463f8f06d9d24cb8a85
SHA256

2ea3fa7021afb976b6144a3983ca23ac15b04c8735831dbeeaef15e0761c6318
SHA512

fa01e63cb3cfc360550244e0e3cbe1a2eab1a93457a21c81afd005aec2fe53220c2976b09f39e1ee4d8768c3d1fecf0d25d26fef7ac1ac838066dae4d0cfb2a9
SSDEEP

3072:ZkPWylBjxZ+oxfD9/oZpJzewIhAihMqy/e/DvuS7LYPGd7:ZkuyTxcsg3XjF8DvtLYPG7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c7ef5373859d83c8b5d8f1922965306_JaffaCakes118

Files

3c7ef5373859d83c8b5d8f1922965306_JaffaCakes118
.exe windows:4 windows x86 arch:x86

84798768ed32c309877510f7f1ba2c16

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCursor
GetWindowInfo
GetDC
FillRect
MoveWindow
LoadCursorA
ReleaseDC
GetDlgItem
SetWindowLongA
ReleaseCapture
GetSysColor
SetWindowPos
GetWindowLongA
IsWindow
SetCapture

kernel32

CloseHandle
GetSystemTime
CreateProcessA
GetCalendarInfoW
LoadLibraryW
GetCurrentProcess
SetUnhandledExceptionFilter
Sleep
GetACP
lstrlenW
HeapSize
IsDebuggerPresent
UnhandledExceptionFilter
InterlockedExchange
lstrlenA
GetStartupInfoA
CreateFileW
HeapAlloc
GetThreadLocale
GetSystemTimeAsFileTime
GetTickCount
GetCurrentThreadId
GetStdHandle
EnumResourceNamesA
GetLocaleInfoA
WriteFile
HeapReAlloc
TerminateProcess
RaiseException
GetEnvironmentVariableA
FindFirstFileW
GetCurrentProcessId
GetModuleHandleA
MultiByteToWideChar
GetProcessHeap
LoadLibraryExW
HeapDestroy
SystemTimeToFileTime
HeapFree
WideCharToMultiByte
LocalAlloc
InterlockedCompareExchange
QueryPerformanceCounter
lstrcpynW

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84798768ed32c309877510f7f1ba2c16

Headers

File Characteristics

Imports

user32

kernel32

oleacc

ole32

winmm

version

Sections

.text Size: 95KB - Virtual size: 94KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 75KB - Virtual size: 75KB

.rsrc Size: 1024B - Virtual size: 384KB

.text
Size: 95KB - Virtual size: 94KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 75KB - Virtual size: 75KB

.rsrc
Size: 1024B - Virtual size: 384KB