3e6a75a347ba1055f8daf5b360963be1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3e6a75a347ba1055f8daf5b360963be1_JaffaCakes118
Size

288KB
MD5

3e6a75a347ba1055f8daf5b360963be1
SHA1

f1c727992d7042ecb1bd8f0e8cbaee7e63e08615
SHA256

95aadc3004bbf70e8c503df18f9f4259180d6facc835d05c93144a546afe6907
SHA512

847f8d00ef97541b2f59bead5a8d37b1cb8c3d19712bbba43a036470a7822c7faaba50cc5dd04264e7356e7d44f1c10748d50ca4f17f9a49e44e19127f91099c
SSDEEP

6144:cXzfA/+EmR8dXJAnHhW2ZUvJ2Yl7/beuzW23CEOxkxcCnyLX:cU/+dR8dXuHA3RtdDe0JBO+n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e6a75a347ba1055f8daf5b360963be1_JaffaCakes118

Files

3e6a75a347ba1055f8daf5b360963be1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d340866020cc053dade97e7872da4712

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetAutodialHangup

user32

ArrangeIconicWindows
ShowWindow
EnumPropsExA
GetKeyboardLayout
IsCharUpperA
TranslateAcceleratorA
WaitForInputIdle
MsgWaitForMultipleObjectsEx
GetWindowTextLengthW
GetSystemMetrics
TabbedTextOutW
IsDialogMessageW
RemovePropW
GetAsyncKeyState
EnumWindows
GetPropW
RegisterClassA
CharUpperA
GetKeyboardState
SetWindowsHookA
IsDialogMessageA
RegisterClassExA
CountClipboardFormats
GetCaretBlinkTime
DefDlgProcA
SetForegroundWindow
ChangeMenuW
SetProcessDefaultLayout
CloseWindowStation
CloseWindow
EnumThreadWindows
MapVirtualKeyA
DlgDirSelectComboBoxExW
DrawEdge
ChildWindowFromPointEx

kernel32

FreeEnvironmentStringsW
CreateEventW
CloseHandle
SetEnvironmentVariableA
GetStringTypeA
GetLastError
lstrcatA
GetPriorityClass
TlsSetValue
GlobalAddAtomA
GetStartupInfoW
GetCompressedFileSizeA
GetSystemTimeAsFileTime
GetStdHandle
LocalSize
GetLocaleInfoA
HeapFree
CopyFileExA
LoadLibraryW
ExitProcess
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
SetTimeZoneInformation
GetFileType
VirtualProtect
FoldStringW
CreateToolhelp32Snapshot
WriteFile
LCMapStringA
GetSystemInfo
ExpandEnvironmentStringsA
GetPrivateProfileIntA
GetEnvironmentStrings
GetOEMCP
EnterCriticalSection
OpenEventA
HeapReAlloc
QueryPerformanceCounter
GetCurrentProcess
CreateProcessW
GetDateFormatA
ReadConsoleOutputCharacterA
CreateMailslotW
LCMapStringW
MultiByteToWideChar
TlsGetValue
CompareStringW
SetLastError
EnumSystemLocalesA
GetThreadPriority
CreateRemoteThread
GetEnvironmentStringsW
MapViewOfFile
GetCPInfo
OpenFile
GetTimeFormatA
InterlockedExchangeAdd
GetUserDefaultLCID
VirtualAlloc
GetCurrentProcessId
ReadConsoleOutputW
HeapAlloc
InterlockedExchange
GetSystemDirectoryW
ReadFile
EnumResourceLanguagesA
IsValidLocale
GetMailslotInfo
GetLocaleInfoW
SetUnhandledExceptionFilter
InitializeCriticalSection
FreeEnvironmentStringsA
FlushInstructionCache
TlsFree
RtlUnwind
lstrlenW
GlobalGetAtomNameW
GetCurrentThreadId
GetACP
CreateMutexA
DeleteCriticalSection
SetCurrentDirectoryW
WritePrivateProfileSectionA
EnumCalendarInfoExA
WritePrivateProfileSectionW
EnumResourceNamesA
VirtualFree
GetTempFileNameW
GetTempFileNameA
OpenMutexA
GetModuleFileNameA
VirtualQuery
IsValidCodePage
WaitForSingleObject
GetProfileSectionA
GetCommandLineA
LocalFileTimeToFileTime
FindNextChangeNotification
GetVersionExW
FindAtomA
SetHandleCount
SetStdHandle
GetDriveTypeA
WaitForMultipleObjects
GetSystemDirectoryA
HeapCreate
UnhandledExceptionFilter
IsBadWritePtr
ReadConsoleOutputAttribute
GetVersionExA
FlushFileBuffers
GetCurrentThread
GetVolumeInformationA
AddAtomA
GetTickCount
GetStartupInfoA
HeapDestroy
GetLogicalDriveStringsA
LoadLibraryA
HeapSize
GetComputerNameA
MoveFileExW
CompareFileTime
GetCommandLineW
WideCharToMultiByte
GetModuleHandleA
GetStringTypeW
CompareStringA
TlsAlloc
DosDateTimeToFileTime
SetConsoleActiveScreenBuffer
GetTimeZoneInformation
TerminateProcess
GetProcAddress
LeaveCriticalSection
SetFilePointer

comctl32

ImageList_Read
ImageList_SetIconSize
ImageList_BeginDrag
ImageList_DrawIndirect
CreateUpDownControl
CreateMappedBitmap
CreateToolbarEx
InitCommonControlsEx
ImageList_GetImageInfo
DrawStatusTextA

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d340866020cc053dade97e7872da4712

Headers

File Characteristics

Imports

wininet

user32

kernel32

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 88KB - Virtual size: 104KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 88KB - Virtual size: 104KB

.rsrc
Size: 20KB - Virtual size: 16KB