3e0a7345dace1d98b32e0c87f73f3dea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3e0a7345dace1d98b32e0c87f73f3dea_JaffaCakes118
Size

145KB
MD5

3e0a7345dace1d98b32e0c87f73f3dea
SHA1

d493c4b14644db61541bdcf7d9a972bf6e60424e
SHA256

c064c916e151dea634455e7c735dc38fb6452c9e8ddaad5eda2ddd7a69a09f32
SHA512

e9bf5ccc992f0a8eb0c83eb10d1625a902e5d7a4abc59ce363b0793b62bf0ff06ed1b778517de3840a34974d1129fde5ce7b4ca7c03f208b3c65303d638740ea
SSDEEP

3072:BeUHG+3thGhV7PMeG8IQaZd3KBPR9lXZNvJi1PCTcAtTdKK:BWhy7JKBR9lJNoQFKK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e0a7345dace1d98b32e0c87f73f3dea_JaffaCakes118

Files

3e0a7345dace1d98b32e0c87f73f3dea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38280e53a2dd9c01977a8e927857ae2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

send
htons
setsockopt
recv
socket
select
WSAGetLastError
shutdown
ioctlsocket
closesocket
WSACleanup
gethostbyname
connect
WSAStartup
gethostname
inet_addr

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

DeleteCriticalSection
GetPrivateProfileIntA
CreateThread
LeaveCriticalSection
EnterCriticalSection
TerminateThread
GetModuleFileNameA
GetTempPathA
GetModuleHandleA
GetCurrentDirectoryA
lstrlenA
GetLastError
DeleteFileA
ReleaseMutex
WaitForMultipleObjects
GetVersionExA
WriteFile
CopyFileA
GetUserDefaultLangID
GlobalFree
GlobalSize
GlobalUnlock
GlobalLock
GlobalAlloc
LocalFree
LocalAlloc
SetStdHandle
SetConsoleCtrlHandler
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
InitializeCriticalSection
GetVersion
CreateEventA
GlobalMemoryStatus
CloseHandle
GetPrivateProfileStringA
CreateMutexA
GetTickCount
WaitForSingleObject
WinExec
SetEvent
CreateFileA
LoadLibraryA
ReadFile
SetFilePointer
GetFileSize
IsBadWritePtr
HeapCreate
HeapDestroy
VirtualFree
GetProcAddress
HeapSize
GetEnvironmentVariableA
TerminateProcess
VirtualAlloc
UnhandledExceptionFilter
GetCurrentProcess
GetOEMCP
GetACP
GetCPInfo
RemoveDirectoryA
CreateDirectoryA
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapFree
HeapAlloc
GetStringTypeW
GetSystemTime
GetTimeZoneInformation
GetLocalTime
FreeEnvironmentStringsA
FreeEnvironmentStringsW
RtlUnwind
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetStdHandle
GetFileType
SetHandleCount
IsBadReadPtr
IsBadCodePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
MultiByteToWideChar
GetStringTypeA
HeapReAlloc

user32

RegisterClassExA
TranslateMessage
DispatchMessageA
LoadCursorA
GetClassInfoExA
LoadIconA
DialogBoxParamA
FindWindowA
SetForegroundWindow
MessageBoxA
GetDC
EndPaint
FillRect
GetWindowRect
GetClientRect
ScreenToClient
DefWindowProcA
SetWindowTextA
ShowWindow
IsRectEmpty
PostQuitMessage
IsWindow
IntersectRect
PtInRect
SendDlgItemMessageA
SendMessageA
DrawTextA
InvalidateRect
UpdateWindow
ReleaseDC
SetDlgItemTextA
KillTimer
SetTimer
TranslateAcceleratorA
EndDialog
GetSystemMetrics
PostMessageA
GetDlgItem
DestroyWindow
MessageBoxIndirectA
LoadAcceleratorsA
EnableWindow
GetMessageA
ChangeDisplaySettingsA
EnumDisplaySettingsA
UnionRect

gdi32

CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
SetMapMode
SetTextColor
SetBkColor
GetObjectA
SetBkMode
CreateFontIndirectA
DeleteDC
CreateDIBitmap
GetBkColor
CreateBitmap
DeleteObject
BitBlt

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteExA

ole32

CoCreateGuid

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38280e53a2dd9c01977a8e927857ae2b

Headers

File Characteristics

Imports

wsock32

version

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 20KB - Virtual size: 77KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 20KB - Virtual size: 77KB

.rsrc
Size: 4KB - Virtual size: 3KB