3dbdcc9967b625c8c702c97b770862a4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3dbdcc9967b625c8c702c97b770862a4_JaffaCakes118
Size

380KB
MD5

3dbdcc9967b625c8c702c97b770862a4
SHA1

beac27437bff2ce74c3bee9901633144fddf2a62
SHA256

d2c727ad2ec6f046fb6d4c20badaa1dc5a14c453366765f67429c5f5fba96742
SHA512

81db7dfa4f8f686fb05bdf34aeb81eed89a0a2bfe69a9392cc372c492fe4cb2a13ba003c1942a0fb92cb280237584bc741f00ffe20c8133aea2ee2855cbcfb9c
SSDEEP

6144:N45R0SQDELJx1j1aEcRC8gCGt0A+/gjd/lMhCJhW+4hxyA:ER0TgLJx1j8FbnGSIBlMEJ+x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dbdcc9967b625c8c702c97b770862a4_JaffaCakes118

Files

3dbdcc9967b625c8c702c97b770862a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5aa61439cb9c3485d8a6bcc16c787394

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextW
GetSaveFileNameW
LoadAlterBitmap
ChooseFontA

comctl32

ImageList_SetBkColor
ImageList_DragEnter
ImageList_SetOverlayImage
CreateStatusWindow
ImageList_Add
ImageList_Replace
DrawStatusTextA
ImageList_SetDragCursorImage
ImageList_GetIconSize
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_LoadImage

kernel32

LeaveCriticalSection
TlsFree
EnterCriticalSection
GetPrivateProfileSectionA
GetSystemTimeAsFileTime
GetConsoleCP
CompareStringA
GetComputerNameA
SetConsoleCtrlHandler
CompareStringW
LocalCompact
HeapCreate
GetConsoleOutputCP
TryEnterCriticalSection
RtlUnwind
GetCPInfo
TlsGetValue
WritePrivateProfileStructW
OpenWaitableTimerA
WideCharToMultiByte
GetModuleFileNameA
FileTimeToDosDateTime
HeapAlloc
FreeEnvironmentStringsA
GetAtomNameW
FreeLibrary
IsValidLocale
GetConsoleTitleA
GetACP
EnumSystemLocalesA
IsValidCodePage
GetTimeFormatA
MultiByteToWideChar
ExitProcess
CreateNamedPipeA
GetProcAddress
LCMapStringW
GetLocaleInfoW
GetUserDefaultLCID
GetStringTypeW
WriteFile
WriteConsoleA
GetCurrentThreadId
GetProcessHeaps
LCMapStringA
LoadLibraryExA
HeapSize
VirtualQuery
SetStdHandle
ReadFile
VirtualAlloc
CreateFileA
GetFileType
QueryPerformanceCounter
GetModuleHandleW
GetSystemTimeAdjustment
GetConsoleMode
CreateMutexA
GetLocaleInfoA
GetOEMCP
SetFilePointer
CloseHandle
GetStringTypeA
HeapDestroy
IsDebuggerPresent
HeapReAlloc
GetTimeZoneInformation
TlsSetValue
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
TlsAlloc
FreeEnvironmentStringsW
GetLocalTime
InterlockedExchange
GetLastError
Sleep
WriteConsoleW
GetCurrentProcessId
FlushFileBuffers
GetEnvironmentStringsW
SetHandleCount
SetUnhandledExceptionFilter
InterlockedCompareExchange
InterlockedIncrement
InterlockedDecrement
GetStartupInfoA
UnhandledExceptionFilter
SetEnvironmentVariableA
LoadLibraryA
GetEnvironmentStrings
GetCompressedFileSizeW
GetUserDefaultLangID
GetExitCodeThread
GetDateFormatA
VirtualFree
lstrcpyn
DeleteCriticalSection
SetLastError
HeapFree
GetTickCount
GetCommandLineA
GetStdHandle
GetCurrentProcess
OpenMutexA
TerminateProcess
GetCurrentThread

user32

SetMenuItemInfoA
ShowWindow
GetPropA
MessageBoxExW
EditWndProc
EnumDisplayMonitors
CharNextExA
UnhookWindowsHookEx
EndTask
DestroyCaret
GetMenu
GetWindowInfo
FindWindowExA
DdeUninitialize
DdeConnect
ScrollWindow
OemToCharBuffA
EndPaint
OpenDesktopA
LoadCursorFromFileW
DefFrameProcW
GetMenuItemInfoW
CopyAcceleratorTableA
AnyPopup
IsCharLowerW
GetNextDlgGroupItem
CallMsgFilter
GetMenuBarInfo
RegisterClassExA
LoadImageW
AdjustWindowRect
RegisterClassA
BroadcastSystemMessageW
CreateWindowStationW
DrawTextW
BeginDeferWindowPos
MessageBoxExA
GetMenuStringA

advapi32

RegQueryValueExW
RegDeleteKeyA
RegEnumValueA
CryptHashSessionKey
CryptExportKey
LookupPrivilegeNameA
AbortSystemShutdownW
RegSetKeySecurity
ReportEventA
CryptDestroyKey

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5aa61439cb9c3485d8a6bcc16c787394

Headers

File Characteristics

Imports

comdlg32

comctl32

kernel32

user32

advapi32

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 96KB - Virtual size: 94KB

.data Size: 92KB - Virtual size: 118KB

.rsrc Size: 96KB - Virtual size: 94KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 96KB - Virtual size: 94KB

.data
Size: 92KB - Virtual size: 118KB

.rsrc
Size: 96KB - Virtual size: 94KB