3edaebb98627d8efe07906d545b0ac36_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3edaebb98627d8efe07906d545b0ac36_JaffaCakes118
Size

50KB
MD5

3edaebb98627d8efe07906d545b0ac36
SHA1

d891a0c765f994bf156faa26eb97e42b059f41a9
SHA256

5ade2f24dd124afe6bb66b396a5f3094e6fd905b05f25a5d56b17085c85dbb7e
SHA512

5dac0332c345fe4df5f092685788e4ec658946eb967fb4f99301727d38dc32a07d244ced49daa1c13496d1f84f4e7c4e5c526309fd2ba2f1896dae8ee32767fb
SSDEEP

768:aAlz6j5OgSwsg4Z4wo+HLHWInfpjQTO919NSYHhjCQXWh6XQalmj4abZbMR9MMED:aABgSwD43THzjIYRZlXKaw9b4Z0+U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3edaebb98627d8efe07906d545b0ac36_JaffaCakes118

Files

3edaebb98627d8efe07906d545b0ac36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

768774ee9e93e125ed64a772a6154197

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MultiByteToWideChar
GetStartupInfoA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
IsDBCSLeadByte
GetPrivateProfileStructA
SetEndOfFile
SetFilePointer
WriteFile
GetFileSize
ReadFile
CloseHandle
GetModuleFileNameA
lstrcpyA
CreateFileA
GetModuleHandleA
WritePrivateProfileStructA
lstrcatA
lstrlenA
IsBadReadPtr
lstrcpynA

user32

GetScrollInfo
GetScrollPos
SetScrollPos
InvalidateRect
MessageBeep
DialogBoxParamA
IsClipboardFormatAvailable
SetTimer
SetWindowPos
SetClipboardData
EmptyClipboard
PostQuitMessage
TrackPopupMenu
IsZoomed
IsIconic
GetAsyncKeyState
MessageBoxIndirectA
GetClassLongA
SetForegroundWindow
KillTimer
SetScrollRange
GetDC
ReleaseDC
SetCaretPos
ShowCaret
HideCaret
DestroyCaret
CreateCaret
BeginPaint
FillRect
EndPaint
LoadIconA
LoadCursorA
RegisterClassA
MessageBoxA
SetWindowLongA
GetClassInfoA
GetSystemMetrics
CreateWindowExA
LoadBitmapA
GetClientRect
LoadAcceleratorsA
MoveWindow
GetWindowRect
ScreenToClient
ShowWindow
UpdateWindow
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DestroyMenu
RegisterClipboardFormatA
CreatePopupMenu
AppendMenuA
wvsprintfA
GetWindowTextLengthA
CheckRadioButton
SetDlgItemTextA
EnableWindow
SetWindowTextA
GetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
SetFocus
EndDialog
IsDlgButtonChecked
wsprintfA
CheckDlgButton
DefWindowProcA
OpenClipboard
EnumClipboardFormats
GetClipboardData
CloseClipboard
CallWindowProcA
GetDlgCtrlID
GetParent
SendMessageA
GetCursorPos

gdi32

GetTextMetricsA
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
SetTextColor
TextOutA
BitBlt
MoveToEx
LineTo
DeleteDC
GetStockObject
DeleteObject
CreateFontIndirectA

comdlg32

GetOpenFileNameA

advapi32

RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA

shell32

Shell_NotifyIconA

comctl32

ord17
CreateToolbarEx

msvcrt

toupper
strrchr
strlen
??2@YAPAXI@Z
strcpy
strcat
_EH_prolog
__CxxFrameHandler
free
malloc
memset
realloc
??3@YAXPAX@Z
memcpy
memcmp
__dllonexit
_onexit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_wcsnicmp
_exit
_strnicmp

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

768774ee9e93e125ed64a772a6154197

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

msvcrt

Sections

.text Size: 32KB - Virtual size: 32KB

.rsrc Size: 17KB - Virtual size: 20KB

.text
Size: 32KB - Virtual size: 32KB

.rsrc
Size: 17KB - Virtual size: 20KB