3fc4eb89ac7c268ff3d70c2be32bcdc0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3fc4eb89ac7c268ff3d70c2be32bcdc0_JaffaCakes118
Size

296KB
MD5

3fc4eb89ac7c268ff3d70c2be32bcdc0
SHA1

ac3efc69557bc57cee65a3864f1d4df633cdc8a8
SHA256

6dbdc5d6d4615837fcca23b255a63c2fcbe9c01d62705e44b145818772ad53b8
SHA512

1fb537e1c718c4e56b68607fabba19c2db5a9fd4e4d17cf7d59d45cef6fa84d69e4c575859587e64b882ef83379707f9cecfcdfb498a890fcb6796f45d48a32f
SSDEEP

6144:vVQDO7wNrWUFzWS7V/PH5jvTR29YC8iEONjier/:vKD0h01F2aCRRier

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3fc4eb89ac7c268ff3d70c2be32bcdc0_JaffaCakes118

Files

3fc4eb89ac7c268ff3d70c2be32bcdc0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e7f042a1bd22f3d6b4ba3da5d8f135b8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\ejemax\stso\uretmak\jjcdseofe\cbeeeey\azjmssh

Imports

kernel32

HeapFree
QueryPerformanceCounter
HeapAlloc
GetUserDefaultLCID
InterlockedExchange
OutputDebugStringW
GetOEMCP
GetSystemTimeAsFileTime
GetModuleFileNameW
GetProcAddress
GetProcessHeaps
GetCommandLineW
GetStdHandle
SetFilePointer
GetTimeFormatA
GetTempFileNameW
FreeEnvironmentStringsA
HeapCreate
IsBadWritePtr
GetTickCount
GetCurrentThread
HeapDestroy
FreeEnvironmentStringsW
WideCharToMultiByte
RtlUnwind
GetSystemInfo
TlsFree
OpenMutexA
GetModuleHandleA
IsValidCodePage
ExitProcess
GetTimeZoneInformation
EnumSystemLocalesA
VirtualAlloc
LeaveCriticalSection
GetEnvironmentStringsW
InitializeCriticalSection
TlsAlloc
GetLocaleInfoW
CompareStringW
FlushFileBuffers
GetLastError
SetStdHandle
GetCurrentProcessId
GetStringTypeA
GetCurrentThreadId
GetLocaleInfoA
GetCurrentProcess
GetModuleFileNameA
TlsSetValue
GetDateFormatA
TerminateProcess
GetVersionExA
GetStartupInfoA
CreateMutexA
TlsGetValue
MultiByteToWideChar
LCMapStringW
VirtualProtect
SetEnvironmentVariableA
VirtualFree
HeapReAlloc
GetStartupInfoW
LCMapStringA
SetHandleCount
CompareStringA
EnterCriticalSection
DeleteCriticalSection
VirtualQuery
IsValidLocale
ReadFile
GetEnvironmentStrings
CloseHandle
HeapSize
UnhandledExceptionFilter
GetACP
GetFileType
SetLastError
LoadLibraryA
GetStringTypeW
WriteFile
GetCPInfo
GetCommandLineA

user32

RemovePropA
CallWindowProcA
MessageBoxA
PtInRect
InvalidateRgn
GetWindowThreadProcessId
CreateIconFromResourceEx
RegisterClassExA
RegisterClassA
CreateIconFromResource
GetKeyNameTextA
CreateCaret
CopyIcon
ToAscii
ShowWindow
DrawFrame
GetSubMenu
ModifyMenuA
BeginPaint
SetKeyboardState
LoadMenuA
DestroyWindow
GetWindowWord
CharUpperA
ReuseDDElParam
IsCharLowerW
UnregisterHotKey
SetMenuItemInfoW
MenuItemFromPoint
FreeDDElParam
GetMenuItemID
ReplyMessage
DrawIcon
ChangeDisplaySettingsA
GetPropA
CreateCursor
EnumDesktopsA
ShowOwnedPopups
CreateWindowExW
FindWindowW
CheckMenuRadioItem
InsertMenuItemW
MessageBoxW
GetMenuContextHelpId
GetMonitorInfoA
TranslateAcceleratorW
DeferWindowPos
DefWindowProcW
GetDlgItemTextA
CreateWindowStationW
SetMenu
SetPropW
DestroyAcceleratorTable
PostThreadMessageW
IsCharAlphaW
CharLowerA
GetKeyboardLayoutNameA
OpenWindowStationA
GetClassInfoW
DispatchMessageW
DdeAddData
FrameRect
DrawFrameControl
CharToOemBuffA
SystemParametersInfoW
GetAsyncKeyState
UnpackDDElParam
GetCaretPos
DdeSetQualityOfService

shell32

SHGetSpecialFolderPathA
ShellExecuteW

comctl32

CreateStatusWindowA
CreateToolbarEx
ImageList_SetFilter
ImageList_Destroy
ImageList_DragEnter
ImageList_Read
DrawStatusTextA
InitCommonControlsEx
ImageList_LoadImage
ImageList_Create
ImageList_DragLeave

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7f042a1bd22f3d6b4ba3da5d8f135b8

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

shell32

comctl32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 92KB - Virtual size: 90KB

.data Size: 92KB - Virtual size: 119KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 92KB - Virtual size: 90KB

.data
Size: 92KB - Virtual size: 119KB

.rsrc
Size: 24KB - Virtual size: 22KB