3ec0671ed6d8c9ed9a3b7ca77a9532cd_JaffaCakes118

General

Target

3ec0671ed6d8c9ed9a3b7ca77a9532cd_JaffaCakes118
Size

75KB
MD5

3ec0671ed6d8c9ed9a3b7ca77a9532cd
SHA1

c7b38c03aa69b8df770b7a58f9b4d3b3de690b45
SHA256

dcd9d25383cfd1d90d520c28933659fba6c3c1d15dab4de1bc69c87e71f810ca
SHA512

fa89951d47ed9b77e61114b3436d1d0186e56dae6416f6ca72bdbed52ca37255d21063c6aed1cb86455d9bc9dc0d72ed1bcea7e8e1cf866c8f2603a80b9b1b9f
SSDEEP

1536:sQ/1xHA+HZY9iaBj9zPejc39cK34NSFDB1j3jpdHLzZve2cCQHsWeCGO4:sQzHgIaBj9DV9caPtqH9eCGJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ec0671ed6d8c9ed9a3b7ca77a9532cd_JaffaCakes118

Files

3ec0671ed6d8c9ed9a3b7ca77a9532cd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

522f41c528b66d163e54e8e24b3870f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InflateRect
GetDlgItemTextA
FillRect
EndPaint
OffsetRect
DrawFocusRect
BeginPaint
MessageBoxA
EndDialog
SendDlgItemMessageA
SetDlgItemTextA
DialogBoxParamA
LoadIconA
DrawTextA
GetDC
SendMessageA

kernel32

ResumeThread
CreateMutexA
GetLastError
ExitProcess
lstrlenA
CreateFileMappingA
MapViewOfFile
GetFileSize
CloseHandle
UnmapViewOfFile
FindResourceA
GlobalAlloc
GlobalFree
LoadResource
LockResource
SizeofResource
SetThreadPriority
Sleep
SuspendThread
SetLastError
MulDiv
ExitThread
CreateFileA
CreateThread

gdi32

SetBkMode
RoundRect
SetTextColor
GetDeviceCaps
CreateCompatibleBitmap
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateCompatibleDC
BitBlt
CreateFontA
SelectObject

comdlg32

GetOpenFileNameA

shell32

ShellExecuteA

winmm

waveOutWrite
waveOutUnprepareHeader
waveOutRestart
waveOutReset
waveOutPause
waveOutOpen
waveOutGetPosition
waveOutClose
waveOutPrepareHeader

oleaut32

OleLoadPicture

ole32

CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateStreamOnHGlobal
CoInitialize

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

522f41c528b66d163e54e8e24b3870f7

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comdlg32

shell32

winmm

oleaut32

ole32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 30KB

.rsrc Size: 57KB - Virtual size: 57KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 30KB

.rsrc
Size: 57KB - Virtual size: 57KB