3cf71f7128cb71efce1c93b5461b5a17_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3cf71f7128cb71efce1c93b5461b5a17_JaffaCakes118
Size

385KB
MD5

3cf71f7128cb71efce1c93b5461b5a17
SHA1

0086aa631dba0d5486da852bb486712c8195d1e6
SHA256

2d741d0bb82f4ff043e56cd5098496a672f43ed283f234480599e720b6c322aa
SHA512

98067567255f75c172658c64f26b2e99b1a292c94d46a99325169a2edba77163f66f845d8af17c5331dcbe0ccb1842df0ef14c623f505a9e727de7f9b81fa632
SSDEEP

12288:gmGkq9y+3eCR3ET8KP7BFutOye5ooP0eFu6:gmU5jWT8EDvjPC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cf71f7128cb71efce1c93b5461b5a17_JaffaCakes118

Files

3cf71f7128cb71efce1c93b5461b5a17_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8e91012f79fb25a390030423481c2ba0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCursorInfo
HeapValidate
Heap32ListNext
QueryPerformanceCounter
EnumerateLocalComputerNamesW
BackupWrite
GetCurrentThreadId
WideCharToMultiByte
WriteConsoleInputA
lstrcpy
GetCurrentProcessId
DosDateTimeToFileTime
GetModuleFileNameA
ScrollConsoleScreenBufferW
GetTickCount
RtlMoveMemory
CreateFileA
UnmapViewOfFile
SetComputerNameExW
GetModuleHandleW
VirtualAlloc
GetStartupInfoW
LoadLibraryA
MoveFileWithProgressW
QueryDepthSList
EnumSystemCodePagesW
ProcessIdToSessionId
FormatMessageA
FindVolumeClose
_lwrite

crtdll

_ismbcalpha
localeconv
_mbsbtype
_findfirst
iswspace
_getcwd
_timezone_dll
vwprintf
_rmtmp
_mbcjmstojis
wcslen
iswprint
strcoll
mbstowcs
_ftime
_ismbcsymbol
_rmdir
fopen
free
_cexit
_fgetwchar
_isnan
_tzname
mblen
_strninc
_getdrive
_putw
strtod
_CIpow

user32

GetFocus
MessageBoxA
GetWindowTextA
CharToOemBuffA
LoadImageA
OffsetRect
PaintMenuBar
GetMenuCheckMarkDimensions
DlgDirSelectComboBoxExA
SendMessageCallbackW
SetClipboardData
ShowScrollBar
EndDialog
SendInput
GetOpenClipboardWindow
TileWindows
User32InitializeImmEntryTable
DdeReconnect
DdeEnableCallback
GrayStringW
TabbedTextOutW
CopyAcceleratorTableA
GetKeyboardType
SetMessageQueue
UnionRect
MapVirtualKeyExW
OpenWindowStationW
EnumDisplaySettingsA
GetMenuInfo
GetClipboardViewer
IMPQueryIMEA

msvcrt

_mbctolower
iswxdigit
_mktemp
_aligned_malloc
_fileinfo
__crtCompareStringA
_wstrdate
putchar
fgetws
_ismbcpunct
_mbsnbcat
_wperror
_wspawnl
_CIsinh
_mbsnextc
_fpclass
sscanf
_wopen
_chdrive
_winmajor
__unDName
_wgetenv
_adj_fdiv_r

msvcrt20

_getch
?seekoff@filebuf@@UAEJJW4seek_dir@ios@@H@Z
??_8istream@@7B@
??4ostream_withassign@@QAEAAVostream@@ABV1@@Z
_yn
??_Gostream@@UAEPAXI@Z
_adj_fdivr_m32i
??_Eifstream@@UAEPAXI@Z
_itow
wcsncmp
?tie@ios@@QBEPAVostream@@XZ
_wrename
??0fstream@@QAE@HPADH@Z
??0ios@@IAE@ABV0@@Z
_acmdln
?eback@streambuf@@IBEPADXZ
_mbscmp
_wchdir
modf
?sync@istream@@QAEHXZ
??1ostrstream@@UAE@XZ
_lsearch
?good@ios@@QBEHXZ
_stricmp
_ftime
_snprintf

olecli32

ErrQueryProtocol
GenRelease
PbQueryBounds
SetNextNetDrive
OleRequestData
DibChangeData
OleObjectConvert
DibEqual
ErrGetUpdateOptions
OleQueryOutOfDate
OleQueryReleaseError
PbCreateFromClip
GenQueryBounds
ErrObjectLong
LeChangeData
OleSetData
LeSetHostNames
LeQueryOutOfDate
ObjQueryType
BmGetData
OleEqual
OleLoadFromStream
OleQueryType

shell32

SHGetMalloc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 299KB - Virtual size: 788KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e91012f79fb25a390030423481c2ba0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

crtdll

user32

msvcrt

msvcrt20

olecli32

shell32

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 41KB - Virtual size: 41KB

.data Size: 299KB - Virtual size: 788KB

.tls Size: 512B - Virtual size: 4B

.rsrc Size: 37KB - Virtual size: 36KB

.reloc Size: 512B - Virtual size: 252B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 41KB - Virtual size: 41KB

.data
Size: 299KB - Virtual size: 788KB

.tls
Size: 512B - Virtual size: 4B

.rsrc
Size: 37KB - Virtual size: 36KB

.reloc
Size: 512B - Virtual size: 252B