b3ef9301868afaace31e7d6a103a9e1f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b3ef9301868afaace31e7d6a103a9e1f_JaffaCakes118
Size

158KB
MD5

b3ef9301868afaace31e7d6a103a9e1f
SHA1

830b052096194d46853cc7b1dca534987a2efce8
SHA256

2de60f0a9603aa9e2e8512772444bb04f249c36b9d9bee825a2ad07d7ce729de
SHA512

ebbb55a25ad428a3387d1018259967ccac126e09ea5a2f69f5a47f18f6690a9f72b874045601a04ff698656ca8c2c70ab0c63348ab427e65fd5d939befd4087f
SSDEEP

3072:Q7vyirQsl71vUKNG49MWY/LGkSXqwTSGDCScgRy5+QvLfcJPEt:Q7vT/tUKLvYBmS2ZRy5t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3ef9301868afaace31e7d6a103a9e1f_JaffaCakes118

Files

b3ef9301868afaace31e7d6a103a9e1f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

95f7b8dc2e6aa8cc220c4a8173a83c81

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
GetConsoleOutputCP
LocalLock
GlobalUnlock
CreateMutexW
HeapFree
TlsSetValue
GetDateFormatW
LocalAlloc
MoveFileW
ReadFile
LocalFree
LeaveCriticalSection
GetLastError
GetUserDefaultLCID
GetModuleFileNameW
SetCurrentDirectoryW
Sleep
VirtualFree
FindClose
VirtualAlloc
GetProcAddress
LoadLibraryA
VirtualProtect
GetLocaleInfoA
FlushFileBuffers
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
HeapSize
SetStdHandle
SetFilePointer
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
GetCPInfo
GetOEMCP
GetACP
HeapAlloc
CreateFileA
CloseHandle
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetSystemInfo
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA

user32

ReleaseCapture
RegisterClassW
DeleteMenu
DestroyCaret
SetCaretPos
DispatchMessageW
DestroyIcon
GetMenuItemCount
LoadCursorW
GetSystemMetrics
LoadIconW
EndPaint
GetFocus
wsprintfW
DefWindowProcW
LoadBitmapW
CreateWindowExW
PeekMessageW
BeginDeferWindowPos
DrawFocusRect
OpenClipboard
GetKeyboardState
GetMessageA
CreateDialogIndirectParamW
DeferWindowPos
DialogBoxParamW

comdlg32

PrintDlgA
ChooseFontW
GetOpenFileNameW
GetSaveFileNameW
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
PageSetupDlgW
GetFileTitleW
FindTextW
ReplaceTextA
ChooseColorA
ReplaceTextW
PageSetupDlgA

oleaut32

VariantCopy

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 107KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95f7b8dc2e6aa8cc220c4a8173a83c81

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

oleaut32

Sections

.text Size: 39KB - Virtual size: 38KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 107KB - Virtual size: 320KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 39KB - Virtual size: 38KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 107KB - Virtual size: 320KB

.rsrc
Size: 4KB - Virtual size: 4KB