3ed451a3abc66a1204fa462091d3bff7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ed451a3abc66a1204fa462091d3bff7_JaffaCakes118
Size

584KB
MD5

3ed451a3abc66a1204fa462091d3bff7
SHA1

0c06292dde6095647dc4be6692cedbb85757c3fc
SHA256

2409afe266238d02c1c303f701ab3248dbe9aceb2aa8e68ccaf41c3eabf3d5c9
SHA512

d2a14350a8c3e7430488a25db28bb0f6c2945be59896436a0ffdd8faee59e9d67ec771506dc0c5ff6e09e14ab64e3260a2f37c45f8ec29c82536ac1326caf7ad
SSDEEP

12288:yoVnmhcNWyXOZMwaMV3j9YxMkyjUD16ORhjJJ+x:yynm27+ZM4x9tMR9JJ+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ed451a3abc66a1204fa462091d3bff7_JaffaCakes118

Files

3ed451a3abc66a1204fa462091d3bff7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bafadeb222e2551a15574a65793757b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

RetrieveUrlCacheEntryFileA

comctl32

ImageList_DragShowNolock
ImageList_Draw
ImageList_GetDragImage
GetEffectiveClientRect
ImageList_GetIconSize
ImageList_Merge
ImageList_Create
ImageList_GetImageInfo
DrawInsert
DrawStatusText
InitCommonControlsEx
ImageList_SetOverlayImage

kernel32

GetModuleHandleA
GetDateFormatA
WriteConsoleW
SetStdHandle
GetProcAddress
GetEnvironmentStringsW
GetCurrentProcess
HeapCreate
GetDiskFreeSpaceA
HeapDestroy
WriteProfileSectionW
LockResource
SetConsoleMode
FreeLibrary
LeaveCriticalSection
OutputDebugStringA
GetLastError
HeapValidate
WideCharToMultiByte
ReadFile
VirtualFree
FreeEnvironmentStringsA
GetLocaleInfoW
CompareStringW
GetACP
HeapReAlloc
GetModuleFileNameW
GetLogicalDriveStringsA
EnumSystemLocalesA
GetStartupInfoW
GetLocaleInfoA
RaiseException
GetComputerNameA
DebugBreak
GetFileAttributesA
WaitForDebugEvent
CreateMutexA
GetModuleFileNameA
IsValidLocale
GetEnvironmentStrings
IsDebuggerPresent
WriteConsoleOutputAttribute
GetTimeZoneInformation
GetConsoleMode
InitializeCriticalSection
CloseHandle
GetCurrentProcessId
OpenMutexA
InterlockedDecrement
TlsSetValue
WritePrivateProfileStructA
FreeEnvironmentStringsW
SetFilePointer
CompareStringA
LCMapStringW
GetOEMCP
ExitProcess
EnterCriticalSection
OpenFileMappingW
GetCurrentThread
LCMapStringA
GetStringTypeW
HeapFree
DeleteCriticalSection
OutputDebugStringW
QueryPerformanceCounter
CreateFileA
SetHandleCount
SetUnhandledExceptionFilter
InterlockedIncrement
GetCommandLineA
IsBadReadPtr
GetTickCount
UnhandledExceptionFilter
GetTimeFormatA
GetFileType
TerminateProcess
TlsFree
GetCurrentThreadId
CreateNamedPipeW
SystemTimeToTzSpecificLocalTime
GetUserDefaultLCID
SetLastError
LoadLibraryW
GlobalDeleteAtom
FlushFileBuffers
MultiByteToWideChar
VirtualQuery
RtlUnwind
HeapAlloc
VirtualAlloc
SetEnvironmentVariableA
IsValidCodePage
GetCommandLineW
lstrlenA
SetConsoleCtrlHandler
GetStdHandle
GetVersionExA
WriteFile
InterlockedExchange
GetProcessHeap
OpenFileMappingA
TlsAlloc
WriteConsoleA
LoadLibraryA
GetStringTypeA
GetStartupInfoA
FileTimeToLocalFileTime
GetConsoleCP
GetCPInfo
TlsGetValue
lstrcmpW
GetConsoleOutputCP
GetSystemTimeAsFileTime

user32

SetMenuItemInfoA
DestroyWindow
FillRect
EnumWindows
DrawEdge
GetMenuInfo
ValidateRgn
ScrollWindow
EnumPropsExA
EnumDesktopsW
IsCharLowerW
GetGuiResources
CharToOemBuffW
MenuItemFromPoint
WaitMessage
LoadBitmapA
DialogBoxIndirectParamA
DefWindowProcW
ModifyMenuW
RegisterHotKey
RegisterDeviceNotificationW
ChangeMenuA
VkKeyScanExW
CreateWindowExA
MonitorFromWindow
FindWindowA
CreateIconFromResource
SetWindowTextW
PostMessageA
GetNextDlgTabItem
GetKeyboardLayoutNameW
ExcludeUpdateRgn
GetMenuItemCount
RegisterClassExA
ShowWindow
CloseClipboard
PostThreadMessageA
GetKeyNameTextW
GetDlgItem
DefWindowProcA
CallWindowProcW
GetCursor
LoadMenuIndirectW
PaintDesktop
TranslateAccelerator
GetQueueStatus
SetMessageQueue
WINNLSGetEnableStatus
DestroyMenu
IsWindowVisible
SwitchDesktop
SetSysColors
DefMDIChildProcW
GetWindowRgn
RegisterClassA
MessageBoxW
SetDoubleClickTime

Sections

.text
Size: 292KB - Virtual size: 290KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bafadeb222e2551a15574a65793757b7

Headers

File Characteristics

Imports

wininet

comctl32

kernel32

user32

Sections

.text Size: 292KB - Virtual size: 290KB

.rdata Size: 160KB - Virtual size: 158KB

.data Size: 108KB - Virtual size: 128KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 292KB - Virtual size: 290KB

.rdata
Size: 160KB - Virtual size: 158KB

.data
Size: 108KB - Virtual size: 128KB

.rsrc
Size: 20KB - Virtual size: 17KB