b3fac30e97bcc78cc46bd182dc66b0d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b3fac30e97bcc78cc46bd182dc66b0d3_JaffaCakes118
Size

268KB
MD5

b3fac30e97bcc78cc46bd182dc66b0d3
SHA1

3ed6c362ac0059b850a89d03cb4e7cbf33a64635
SHA256

1682537d7e52d3e778a60c8c825e49eb3ab60b4a9c7c7c325aba395ca89f1f78
SHA512

eec1ee3fb8d842357e7934736d62127d82e9115108ccf5e5b57a02ebb6ba3c4c54f9381b9c5e584bb0434773bf6dfa0b43a0ba2fa24ede626149d215a5adc4c7
SSDEEP

6144:Bwy0LEcBRM4RFcN0WKMrH5RoGyJgWQcvb:0EcTNRFcN0+z4GrlcD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3fac30e97bcc78cc46bd182dc66b0d3_JaffaCakes118

Files

b3fac30e97bcc78cc46bd182dc66b0d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

04ce5770677684a4808573edc2b5de6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
HeapSize
GetCPInfo
ExitThread
GetACP
GetOEMCP
TerminateProcess
CreateThread
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
FreeEnvironmentStringsA
UnhandledExceptionFilter
ExitProcess
MulDiv
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
SetEvent
WaitForSingleObject
CloseHandle
GlobalAlloc
GlobalDeleteAtom
HeapFree
GetStartupInfoA
RaiseException
GetCommandLineA
GetModuleHandleA
RtlUnwind
GlobalAddAtomA
SetErrorMode
GlobalGetAtomNameA
GetModuleFileNameA
GetFullPathNameA
FindClose
GetVolumeInformationA
FindFirstFileA
SetEndOfFile
FlushFileBuffers
ReadFile
SetFilePointer
WriteFile
CreateFileA
GetCurrentProcess
WritePrivateProfileStringA
GetProcessVersion
GetVersionExA
TlsGetValue
LoadLibraryA
GetProcAddress
EnterCriticalSection
LocalReAlloc
TlsSetValue
lstrcmpA
lstrcmpiA
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
MultiByteToWideChar
GetCurrentThread
GlobalHandle
DeleteCriticalSection
lstrcpyA
InitializeCriticalSection
LocalAlloc
GlobalFlags
SizeofResource
GetLastError
LocalFree
lstrcpynA
LCMapStringW
SetLastError
FreeLibrary
LoadResource
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
VirtualAlloc
GetStringTypeA
SetUnhandledExceptionFilter
LCMapStringA
WideCharToMultiByte
GetCurrentThreadId
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProfileStringA
lstrcatA
GetVersion
InterlockedIncrement
InterlockedDecrement
lstrlenA

user32

MessageBoxA
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
KillTimer
SetCursor
WaitMessage
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
GetClassNameA
PtInRect
ClientToScreen
GetDesktopWindow
LoadCursorA
GetSysColorBrush
DestroyMenu
FindWindowA
InvalidateRect
OffsetRect
LoadStringA
ReleaseCapture
WindowFromPoint
CharUpperA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
IntersectRect
InflateRect
PostMessageA
UpdateWindow
SystemParametersInfoA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
PostQuitMessage
DeferWindowPos
BeginDeferWindowPos
CopyRect
wvsprintfA
ShowOwnedPopups
SetScrollInfo
ShowScrollBar
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
SetTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
SetWindowTextA
IsDialogMessageA
EndDeferWindowPos
IsWindowVisible
AdjustWindowRectEx
EqualRect
EnableWindow
ScrollWindow
ScreenToClient
SetScrollRange
SendDlgItemMessageA
HideCaret
ShowCaret
UnregisterClassA
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode
ExcludeUpdateRgn

gdi32

SetBkColor
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
SetBkMode
GetStockObject
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetTextColor
ScaleWindowExtEx
SetWindowExtEx
GetObjectA
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
RectVisible
TextOutA
PtVisible
Escape
GetTextExtentPointA
ExtTextOutA
PatBlt
CreateDIBitmap
CreateCompatibleDC
GetClipBox
BitBlt

comdlg32

GetOpenFileNameA
GetSaveFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

shell32

DragFinish
DragQueryFileA

comctl32

ImageList_Destroy
ord17

wsock32

ioctlsocket
bind
accept
htonl
htons
recv
WSAAsyncSelect
inet_ntoa
socket
recvfrom
sendto
connect
WSAGetLastError
WSASetLastError
WSAStartup
WSACleanup
gethostbyname
closesocket
send

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04ce5770677684a4808573edc2b5de6d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

Sections

.text Size: 126KB - Virtual size: 125KB

.rdata Size: 22KB - Virtual size: 21KB

.data Size: 17KB - Virtual size: 34KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 92KB - Virtual size: 92KB

.text
Size: 126KB - Virtual size: 125KB

.rdata
Size: 22KB - Virtual size: 21KB

.data
Size: 17KB - Virtual size: 34KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 92KB - Virtual size: 92KB