3ee469653cb15f4b405c0aaa9d733f37_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ee469653cb15f4b405c0aaa9d733f37_JaffaCakes118
Size

308KB
MD5

3ee469653cb15f4b405c0aaa9d733f37
SHA1

2815b104d69f1f06506fea0507f5af8225132630
SHA256

7de9f9d09a45226baa209141522e67ac0ec78ecc2b70e3079a7516e650167d32
SHA512

17054b0e3a17978bc25aee7b52f662fc3934fd876da8996ae73a4b3243b3100f037ac6181687e760f4b8f4efae3131c3205471777d5a48e8f095decd78d70500
SSDEEP

6144:9dfBOL0lX+wvYcW/aykALYtvIFBsj9q43SPax6invq85zecm:9dI0kwwnaBALYwBsj9qMSy6AvpLm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ee469653cb15f4b405c0aaa9d733f37_JaffaCakes118

Files

3ee469653cb15f4b405c0aaa9d733f37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0b8004d575e9b45f6589522938773f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleOutputW
GenerateConsoleCtrlEvent
MoveFileExA
QueryDosDeviceA
VirtualFree
GlobalDeleteAtom
PeekNamedPipe
OutputDebugStringA
TryEnterCriticalSection
VirtualQuery
EnumCalendarInfoA
WritePrivateProfileStringW
WritePrivateProfileStringA
DebugBreak
FindFirstFileExW
GetCurrentProcess
GlobalAddAtomW
SetVolumeLabelA
UnmapViewOfFile
VirtualUnlock
GetFileAttributesExA
CreateNamedPipeW
LCMapStringA
ReadFileScatter
GetDriveTypeW
SystemTimeToFileTime
CreateMutexW
GetSystemTime
WriteFile
PeekConsoleInputW
GetLogicalDriveStringsA
GetProfileIntA
IsBadStringPtrA
GlobalFlags
GetVolumeInformationW
ReadConsoleOutputA
ExpandEnvironmentStringsW
ConnectNamedPipe
AllocConsole
InitializeCriticalSection
LocalSize
_lopen
GetDiskFreeSpaceExA
GetUserDefaultLCID
SetConsoleTitleA
GetFileInformationByHandle
GetEnvironmentStringsW
LocalAlloc
GetSystemTimeAsFileTime
CopyFileExW
QueryDosDeviceW
AreFileApisANSI
lstrcpynA
CreateEventA
GetCurrentDirectoryW
RemoveDirectoryW
WaitNamedPipeA
FindResourceExA
GetTapeParameters
FindFirstFileA
FatalAppExitA
EnumSystemCodePagesA
GetBinaryTypeA
GlobalAddAtomA
GetPrivateProfileSectionW
GetAtomNameA
SetConsoleWindowInfo
VirtualAlloc
GetModuleFileNameW
GetPrivateProfileStringA
ReadConsoleInputW
VirtualAllocEx
GetTempPathW
SetMailslotInfo
GetSystemDefaultLangID
SetEvent
CreatePipe
GetProcessTimes
ReadConsoleA
RaiseException
SetCommTimeouts
GetOverlappedResult
CompareStringA
GetCompressedFileSizeW
TlsGetValue
GetDriveTypeA
VirtualProtect
GetCommandLineA
SuspendThread
GetTickCount
GetVersionExA
SetupComm
ExitProcess

user32

DestroyCursor
ClipCursor
DialogBoxParamW
SwitchDesktop
CreateIconFromResource
OemKeyScan
RegisterClassA
ArrangeIconicWindows
DefMDIChildProcW
CreateDialogParamW
GetTabbedTextExtentW
EnumDisplaySettingsExW
CopyIcon
OemToCharBuffA
GetCaretBlinkTime
CheckRadioButton
GetClassLongW
CreateDesktopA
DrawMenuBar
EndPaint
CreateWindowStationW
InternalGetWindowText
CloseClipboard
UpdateWindow
InSendMessage
GetKeyState
GetKeyNameTextA
WaitForInputIdle
PostMessageW
CharUpperBuffW
GetMessageA
SetPropW
UnregisterClassA
SetUserObjectInformationW
SwapMouseButton
LoadIconW
DrawStateA
CheckDlgButton
DispatchMessageW
GetWindowTextA
GetWindow
TabbedTextOutA
GrayStringA
IsCharAlphaNumericW
IsChild
SetDlgItemTextW
MsgWaitForMultipleObjects
DrawFocusRect
CharLowerBuffA
IsDialogMessageA

gdi32

GetTextCharset
ScaleWindowExtEx

comdlg32

GetOpenFileNameA
FindTextW
ChooseFontA

advapi32

ClearEventLogW

shell32

SHFileOperationA

ole32

CoResumeClassObjects
CoGetTreatAsClass
StgOpenStorage
CoGetClassObject
OleSetContainedObject
OleCreateFromData
CoGetObject
CoFreeUnusedLibraries

oleaut32

SetErrorInfo
SafeArrayGetElement
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate

shlwapi

PathGetDriveNumberW
PathGetDriveNumberA
UrlCreateFromPathW
PathFindExtensionA
UrlCanonicalizeW
SHCopyKeyA
UrlCombineW
PathIsRootA
PathIsDirectoryEmptyW
StrChrIW
StrStrA
wnsprintfA
PathIsUNCServerW
PathUnquoteSpacesA

setupapi

SetupDiGetINFClassA
SetupDiEnumDeviceInterfaces
SetupDiClassNameFromGuidW
SetupLogErrorA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExA
SetupScanFileQueueW

Sections

.text
Size: 280KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b0b8004d575e9b45f6589522938773f2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

setupapi

Sections

.text Size: 280KB - Virtual size: 279KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 14KB

.text
Size: 280KB - Virtual size: 279KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 14KB