3dfcc6994b8e087d31deb43a07351792_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3dfcc6994b8e087d31deb43a07351792_JaffaCakes118
Size

53KB
MD5

3dfcc6994b8e087d31deb43a07351792
SHA1

006d0b033c3004fdcb9792db937570dfb3c12017
SHA256

2f5b576fbe63fe755b8da6a2fb85fc0fce51c5b5fad6c36c8713a94c7158b05d
SHA512

0241b147d2fc989fe13e80b93e1d71b0d27ace70bdb3963aebba545b474e62da6e781f32a0abaea64e923859f267a60ea22b8484e0ef30f421ad10bc4de3103d
SSDEEP

768:HKCTcnqevmNy9OzyGWSVIuAgfr7VXiEk/3JQoV4l5MI3SNXQoB:qCoqevmNyzGWSVbAgf3p9k/VV4lfSZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3dfcc6994b8e087d31deb43a07351792_JaffaCakes118

Files

3dfcc6994b8e087d31deb43a07351792_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46c7793583c46d0ebc53ef23ff4f436c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetICMMode
CheckColorsInGamut
CreatePen
SetTextAlign
GetTextCharset
OffsetRgn
EnumFontsW
GetMapMode
PolyPolyline
SetICMProfileW
CreateBitmap
SetDIBColorTable
GetViewportOrgEx
GetStretchBltMode
CreateColorSpaceW

ole32

CoGetCallerTID
IsValidIid
CoFileTimeNow
CoInitialize
OleCreateLinkFromData
CoReleaseMarshalData
CoSetState
CLSIDFromProgID

kernel32

VirtualFree
SetCommTimeouts
CreateMailslotA
lstrcmpiW
LockFileEx
WaitForMultipleObjects
GetFileAttributesA
BeginUpdateResourceW
CreateConsoleScreenBuffer
GetProfileStringA
GetVersion
FindAtomA
lstrlenA
ClearCommError
GetThreadContext
GetModuleHandleW
AllocConsole
RtlZeroMemory
GetStdHandle
ReadConsoleInputExW
GetStartupInfoA
ExitProcess
VirtualAlloc
WriteProfileStringA
SetComputerNameA
GetModuleHandleA
CreateSemaphoreW
QueryPerformanceCounter
ReleaseMutex
RequestWakeupLatency
LoadLibraryExA
SetThreadAffinityMask
Sleep
LCMapStringA
GetCommandLineA
GetTickCount
GetDiskFreeSpaceA
GetSystemTime
MoveFileExA
InterlockedCompareExchange
GlobalSize
IsBadHugeWritePtr
GetCurrentThreadId

user32

EnumDisplaySettingsExA
GetDlgItemInt
CharNextW
FreeDDElParam
DestroyWindow
DragDetect
ExcludeUpdateRgn
CheckRadioButton
DrawStateW
DefWindowProcW
CallMsgFilterA
DialogBoxIndirectParamW

msvcrt

signal
clearerr
_getmaxstdio
_heapchk
_amsg_exit
_wsplitpath
strrchr
frexp
_hypot
_fsopen
__p___argv
iswdigit
_gcvt
free
strlen
_ismbcalpha
_except_handler2
_wcsupr
_wsystem
towlower
_adj_fdivr_m32
_setjmp3
_XcptFilter
fflush
_mbctolower
_ecvt
_fstati64
wprintf
_spawnle
_wspawnve
_tolower
_mbccpy
feof
_utime

shell32

ExtractIconA
SHGetFileInfoW
SHGetInstanceExplorer

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.fog
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.otk
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qak
Size: 15KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kku
Size: 7KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 870B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46c7793583c46d0ebc53ef23ff4f436c

Headers

File Characteristics

Imports

gdi32

ole32

kernel32

user32

msvcrt

shell32

Sections

.text Size: 7KB - Virtual size: 6KB

.fog Size: 10KB - Virtual size: 23KB

.otk Size: 12KB - Virtual size: 17KB

.qak Size: 15KB - Virtual size: 20KB

.kku Size: 7KB - Virtual size: 19KB

.reloc Size: 1024B - Virtual size: 870B

.text
Size: 7KB - Virtual size: 6KB

.fog
Size: 10KB - Virtual size: 23KB

.otk
Size: 12KB - Virtual size: 17KB

.qak
Size: 15KB - Virtual size: 20KB

.kku
Size: 7KB - Virtual size: 19KB

.reloc
Size: 1024B - Virtual size: 870B