3d4bafec8f07d1564aa1238b2f336d8f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d4bafec8f07d1564aa1238b2f336d8f_JaffaCakes118
Size

252KB
MD5

3d4bafec8f07d1564aa1238b2f336d8f
SHA1

1fdbda02a11a1755aa27d501c866bd76b067d2b8
SHA256

8bb46dc21ce040051e424e19093a21c6a59928340fc29d8aff39191b5353e8ed
SHA512

f09ef8144be9cbd6c50ba88bb8eb791867e59f2e18f42a7f233378e149421cf03083557edcea83aca8d20c438be1a59a0d3c5cd97e13e374be6278f7550041c9
SSDEEP

6144:WWaoW0CZ8wDi0+Shg3dGsjH0l1nLeaUWceeL6MxY5rbA:2oWOwDi0Hg3K1nLWIel6b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d4bafec8f07d1564aa1238b2f336d8f_JaffaCakes118

Files

3d4bafec8f07d1564aa1238b2f336d8f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b3034d7a997502c38fd970ad299e06d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommModemStatus
GetDriveTypeW
WritePrivateProfileStringW
FlushConsoleInputBuffer
SetFileAttributesA
CompareStringW
SetThreadPriorityBoost
GlobalDeleteAtom
CreateMutexA
UnhandledExceptionFilter
CreateProcessA
DuplicateHandle
GetProfileStringA
CopyFileExW
GetLargestConsoleWindowSize
SetErrorMode
GetStartupInfoA
MultiByteToWideChar
SetConsoleTitleA
CreateFileW
EnumCalendarInfoW
CreateMutexW
DeleteCriticalSection
GetThreadContext
GetPrivateProfileStringA
GlobalFindAtomA
VirtualAlloc
SetThreadLocale
DebugBreak
VirtualAllocEx
GetUserDefaultLCID
OpenFile
IsBadStringPtrA
ReadConsoleA
FindNextChangeNotification
GetBinaryTypeA
ReadFile
_llseek
DeleteFiber
ReadConsoleOutputA
InitializeCriticalSection
SetConsoleCursorPosition
ReadDirectoryChangesW
GetFileAttributesExA
IsValidLocale
WriteConsoleOutputW
VirtualProtect
GetVersionExA
GetCommandLineA
WritePrivateProfileStructA
SetHandleCount
OpenSemaphoreW
lstrcpynA
RemoveDirectoryA
GetWindowsDirectoryA
GetSystemDirectoryW
SetProcessWorkingSetSize
TryEnterCriticalSection
EnumResourceNamesA
EnumCalendarInfoA
SetEnvironmentVariableA
GetLongPathNameA
SetConsoleActiveScreenBuffer
GetDateFormatA
SetConsoleOutputCP
GetCurrentProcessId
EraseTape
GetSystemTimeAdjustment
GetVolumeInformationW
MoveFileExA
AreFileApisANSI
GetConsoleMode
GetDiskFreeSpaceW
UnmapViewOfFile
RemoveDirectoryW
GetFileType
PeekConsoleInputW
SetThreadAffinityMask
GetCompressedFileSizeW
FormatMessageW
GetTapeStatus
ExitProcess
lstrcmpA
VirtualQueryEx
CreateDirectoryA
WriteFile
GlobalFlags
FindResourceExA
FileTimeToLocalFileTime
OpenMutexA
ClearCommBreak
VirtualLock
lstrcmpiA
GetPrivateProfileSectionW
GetOEMCP
QueryDosDeviceW
GetThreadPriority
GetCommConfig
FindFirstFileExW
SetCommMask

user32

DefMDIChildProcW
GetWindowRgn
GetKeyState
LoadMenuW
GetClipboardSequenceNumber
GetClassInfoW
ToUnicodeEx
GetWindowTextLengthW
SetScrollInfo
GetForegroundWindow
GetUpdateRect
InsertMenuA
AppendMenuA
OpenInputDesktop
CharUpperA
EnumWindows
NotifyWinEvent
SystemParametersInfoA
DrawStateW
ChangeDisplaySettingsExA
IsRectEmpty
GetKeyboardLayoutList
wvsprintfW
GetClassNameW
CreateCursor
SendDlgItemMessageW
GetKeyboardLayoutNameA
InSendMessage
MessageBoxExA
EnumDesktopWindows
RedrawWindow
IsWindowUnicode
UnregisterDeviceNotification
CreateAcceleratorTableW
MessageBoxA
DrawStateA
CreateIconFromResource
CreateDialogParamW
DragDetect
DialogBoxParamW
FlashWindow
SetWindowPlacement
GetMenuState
DefWindowProcA
RegisterClipboardFormatW
GetMenuStringW
GetKeyNameTextW
GetKeyboardType
SetParent
SubtractRect
GetDlgItemInt

gdi32

EnumFontFamiliesExW
GetTextAlign
StretchBlt
SetWinMetaFileBits
CreateEnhMetaFileW
CreateHalftonePalette
ArcTo
CreateCompatibleBitmap
GetTextCharsetInfo
GetPixelFormat
SetViewportExtEx
PolyBezierTo

comdlg32

GetFileTitleA
CommDlgExtendedError

advapi32

GetNamedSecurityInfoA
CryptGenKey
QueryServiceStatus
StartServiceCtrlDispatcherW
IsValidSid
SetTokenInformation
RegCreateKeyExW
RegEnumValueW
RegSetValueA
EnumServicesStatusA
AdjustTokenPrivileges
LogonUserA
GetSidIdentifierAuthority
ControlService
RegOpenKeyW
SetKernelObjectSecurity
LookupAccountSidW
CryptGetProvParam
ObjectCloseAuditAlarmW
GetServiceDisplayNameW
RegCreateKeyW
SetSecurityDescriptorGroup
RegNotifyChangeKeyValue
RegSaveKeyW
SetSecurityInfo
CryptCreateHash
CryptExportKey
RegSaveKeyA
DuplicateTokenEx
GetServiceDisplayNameA
RegEnumKeyA
InitializeSecurityDescriptor
GetCurrentHwProfileW
ReportEventA
NotifyBootConfigStatus
GetExplicitEntriesFromAclW
GetNamedSecurityInfoW

shell32

SHGetSpecialFolderPathA
Shell_NotifyIconA
ShellExecuteA

ole32

GetClassFile
ReadClassStg
StgCreateStorageEx
CoReleaseMarshalData

oleaut32

SafeArrayPutElement
QueryPathOfRegTypeLi
VariantCopy
SetErrorInfo

shlwapi

PathFindExtensionA
PathFileExistsA
PathFindNextComponentW
SHRegCloseUSKey
PathStripPathA
StrStrW
PathIsNetworkPathW
UrlApplySchemeW
StrFormatByteSizeA
PathGetDriveNumberW
SHCopyKeyW
StrCmpNW

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 232KB - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b3034d7a997502c38fd970ad299e06d1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 232KB - Virtual size: 228KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 232KB - Virtual size: 228KB