3fb882fbb7bfc6ab048cd52345802a90_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3fb882fbb7bfc6ab048cd52345802a90_JaffaCakes118
Size

360KB
MD5

3fb882fbb7bfc6ab048cd52345802a90
SHA1

28bf92160e3a54d1d12a5b69826371feb46356b0
SHA256

ed29fc82208d077500223d4032758645ad8c7353648c3e5669b033ca360945fa
SHA512

fd94635abb52db50bf1f47f8a06b04da44721adbb1795ae24173ed13e4df7a4ba5dbf888015b38745442844e9f6a4c8b712b0d75b0b65c515dbfb0254d98471f
SSDEEP

6144:qmrI5i/hdEarUe4ZLNW71O/LDStuygw99sAO+BgsgTJowvsLQaQC6/c:qD50/DrUeyJWBO/ituiTNBgsOqw19CX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fb882fbb7bfc6ab048cd52345802a90_JaffaCakes118

Files

3fb882fbb7bfc6ab048cd52345802a90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3c48afb7e971fddc4d64a8744e42fe0b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
EndPaint
GetDC
GetCursorPos
ReleaseDC
MsgWaitForMultipleObjects
DestroyWindow
GetMessageA
GetParent
SetWindowPos
ShowWindow
SetWindowLongA
EnableWindow
PeekMessageA
TranslateMessage
GetWindow
IsIconic
GetFocus
CallWindowProcA
GetClientRect
PostQuitMessage
SetForegroundWindow
UpdateWindow
GetWindowLongA
SetTimer
FillRect
DispatchMessageA
SetFocus
BeginPaint
KillTimer
DefWindowProcA
GetSystemMetrics
GetWindowRect
PostMessageA
InvalidateRect
EndDialog
SetWindowTextA
wsprintfA
CreateWindowExA
GetDlgItem
ScreenToClient
LoadCursorA
LoadIconA
GetDesktopWindow
MoveWindow
MessageBoxA
GetSysColor
IsWindowVisible
GetSubMenu
SendMessageA
SetCursor

kernel32

FormatMessageA
TlsGetValue
InterlockedDecrement
FindClose
GetStringTypeW
LoadResource
InitializeCriticalSection
FormatMessageW
LocalFree
FreeLibrary
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
SetLastError
GetFileSize
GetCurrentThread
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
GetFileAttributesA
WaitForSingleObject
LockResource
GetDriveTypeA
FindFirstFileW
HeapDestroy
GetFileAttributesW
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
GetConsoleMode
LocalAlloc
lstrcatA
SetErrorMode
FreeEnvironmentStringsW
WideCharToMultiByte
GetOEMCP
VirtualAlloc
FindResourceA
CreateProcessW
HeapCreate
SizeofResource
SetStdHandle
LoadLibraryExA
GetModuleHandleW
GetACP
CloseHandle
ReadFile
GetModuleHandleA
MapViewOfFile
RaiseException
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCommandLineW
GetCurrentProcessId
GetEnvironmentStrings
VirtualFree
lstrlenW
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
FindNextFileW
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
GetSystemInfo
UnmapViewOfFile
LCMapStringW
GetLastError
LeaveCriticalSection
GetCurrentThreadId
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
Sleep
GlobalLock
WaitForMultipleObjects
FindNextFileA
CreateFileMappingA
CompareStringA
lstrcpyA
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
GetStartupInfoW
DeleteFileA
CreateDirectoryA
GetModuleFileNameW
GetStartupInfoA
LoadLibraryA
GetVersionExA
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
InterlockedIncrement
GetVersion
GetLocaleInfoA
SetEndOfFile
VirtualQuery
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
CreateThread
HeapAlloc
SetFilePointer
GetLocalTime
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
lstrcmpiA

ole32

CoInitialize
CoCreateInstance

oleaut32

SysAllocString
SysStringLen
SysFreeString

advapi32

RegSetValueExW
RegQueryValueExA
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

gdi32

BitBlt
SetTextColor
DeleteDC
GetDeviceCaps
CreateFontIndirectA
SetBkColor
SelectObject

msvcrt

_controlfp
exit
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
__dllonexit
_onexit
_strcmpi

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 328KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c48afb7e971fddc4d64a8744e42fe0b

Headers

File Characteristics

Imports

user32

kernel32

ole32

oleaut32

advapi32

gdi32

msvcrt

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 328KB - Virtual size: 324KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 328KB - Virtual size: 324KB

.rsrc
Size: 4KB - Virtual size: 1KB