d3395c8ed3a6ea4805bfcca354f79f01_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d3395c8ed3a6ea4805bfcca354f79f01_JaffaCakes118
Size

44KB
MD5

d3395c8ed3a6ea4805bfcca354f79f01
SHA1

183ef41d17ef36bca8e66a3fcce5297295c88c38
SHA256

861699c6f9eaea6abb6ee2b71eb1940700d4e2a7e3bd964298f407ff711c5adf
SHA512

3f7904d51811dda687ee42941bb9206b9e7d7514673c006d4d66c934e8fc075d0ba0cc139ec003af6c2580e8318da18eb0ca11341b38ce459804c05761959696
SSDEEP

768:PYuWIWyqOx/xbcqHvJjiRYABVouOXv43xcw7klXd4d5HUAuHsqEQb3HL+x:PfWEhc2vJ2WwVouOXQ3xcw7+I0VEQH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3395c8ed3a6ea4805bfcca354f79f01_JaffaCakes118

Files

d3395c8ed3a6ea4805bfcca354f79f01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46a63051e54d6665a3a9c3d60004a0a8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualProtect
CreateMailslotA
GetBinaryTypeW
SetEvent
GetFullPathNameW
SetCurrentDirectoryA
GetLogicalDriveStringsW
AreFileApisANSI
GetCommProperties
CloseProfileUserMapping
RegisterWaitForSingleObjectEx
GetFullPathNameA
SetTapePosition
WritePrivateProfileStringW
GetFileSizeEx
RegisterConsoleOS2
TlsSetValue
EnumDateFormatsExA
CloseHandle
HeapCreate
GetPrivateProfileStringA
CreateThread
CreateNamedPipeA
GetAtomNameA
ChangeTimerQueueTimer
Thread32First
HeapSummary
BuildCommDCBAndTimeoutsA
GlobalFix
GetSystemDefaultLangID
SetEndOfFile
FreeEnvironmentStringsA
RtlZeroMemory
GetDateFormatA
DeleteFileW
MulDiv
SetThreadAffinityMask
ExitProcess
ScrollConsoleScreenBufferA
lstrcpyA
SetCommMask
GetProcessAffinityMask
GetConsoleAliasesW
ReadConsoleOutputAttribute
GetConsoleCursorInfo
IsBadReadPtr
LoadResource

user32

SetMenu
GetWindowThreadProcessId
CharPrevA
DlgDirSelectComboBoxExW
LoadCursorA
UserClientDllInitialize
CreateIcon
GetMenuCheckMarkDimensions
DdeGetLastError
LoadMenuW
DdeImpersonateClient
IsCharLowerA
RemoveMenu
MonitorFromPoint
DdeClientTransaction
SetDlgItemTextA
GetMenuItemInfoA
GetCapture
DrawCaptionTempW
GetLastInputInfo
CreateIconIndirect
CharToOemBuffA
MessageBeep
GetProgmanWindow
GetTabbedTextExtentA
CharToOemA
HiliteMenuItem
DdeKeepStringHandle
DrawCaptionTempA
OemToCharBuffA
IsIconic
GetMenuBarInfo
EnableMenuItem
EditWndProc
SetProcessWindowStation
CreateWindowStationA
DdeCreateStringHandleW

gdi32

GetTextExtentPointW
SetTextJustification
CreateDCW
STROBJ_bEnum
GetArcDirection
GdiEndDocEMF
SetArcDirection
ResizePalette
SetMetaRgn
CreatePolygonRgn
SetVirtualResolution
EnumMetaFile
FONTOBJ_pifi
RealizePalette
GetRelAbs
GdiEntry16
PlgBlt
GdiQueryTable

comdlg32

ChooseFontW
FindTextA
LoadAlterBitmap
PrintDlgExA
GetFileTitleA
PrintDlgW
GetSaveFileNameA
WantArrows
PageSetupDlgW
dwOKSubclass
GetOpenFileNameA
ReplaceTextW

psapi

GetDeviceDriverFileNameW
EnumDeviceDrivers
QueryWorkingSet
GetMappedFileNameW
GetModuleFileNameExW
GetDeviceDriverFileNameA
GetModuleInformation
GetProcessMemoryInfo
GetModuleBaseNameA
EnumProcesses
GetWsChanges
EmptyWorkingSet
GetMappedFileNameA
GetModuleBaseNameW
GetModuleFileNameExA
EnumProcessModules
GetDeviceDriverBaseNameA
GetDeviceDriverBaseNameW

comctl32

ImageList_GetBkColor
ImageList_GetFlags
ShowHideMenuCtl
DllGetVersion
DrawInsert
FlatSB_SetScrollPos
ImageList_SetBkColor
ImageList_DragShowNolock
ImageList_AddMasked
LBItemFromPt
InitCommonControls
_TrackMouseEvent
DrawStatusTextA
ImageList_DragLeave
ImageList_Copy
InitMUILanguage
ImageList_Replace
ImageList_LoadImageW

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

46a63051e54d6665a3a9c3d60004a0a8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

psapi

comctl32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 34KB - Virtual size: 36KB

.idata Size: 5KB - Virtual size: 8KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 34KB - Virtual size: 36KB

.idata
Size: 5KB - Virtual size: 8KB