d3d3c43c619e7d5307f4dd311d2ca864_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d3d3c43c619e7d5307f4dd311d2ca864_JaffaCakes118
Size

604KB
MD5

d3d3c43c619e7d5307f4dd311d2ca864
SHA1

8443dbf1d225a55aa7fa14f36ba6b63a467504ed
SHA256

c29006d709e0bfb07345a4e8569b646b36cd9f79a7a6f0a0698ac8cc9c00407c
SHA512

71cea267fa55fc7e355823dc7e96b7a86d388f49833a6b75956b2bf09df0217c3ef0dd14f0083b6cb2ef88699248219a6e4d3ec35b769de2cbb526e27f541c43
SSDEEP

12288:chiBjhmnjWO0cE4Lnt8pklX0YvvE6GObubLDBkXs51Xn6CUeXw:chiBkyO9Emnt8qlX08vE6FuHDBkX6J6W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3d3c43c619e7d5307f4dd311d2ca864_JaffaCakes118

Files

d3d3c43c619e7d5307f4dd311d2ca864_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cbed592ee39d3237b1804413dae56ec6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoCreateInstance
CoTaskMemFree
CoInitialize

user32

IsWindow
DispatchMessageA
EndPaint
GetDC
GetCursorPos
ReleaseDC
UnregisterClassA
GetKeyState
DestroyWindow
GetParent
UpdateWindow
ShowWindow
EnableWindow
PeekMessageA
TranslateMessage
IsWindowEnabled
LoadStringA
EnableMenuItem
RegisterClassA
GetSubMenu
SetTimer
FillRect
BeginPaint
DefWindowProcA
GetSystemMetrics
GetWindowRect
ReleaseCapture
GetWindowLongA
GetDlgItem
LoadCursorA
LoadIconA
EndDialog
MoveWindow
DialogBoxParamA
GetSysColor
DrawTextA
InvalidateRect
SendMessageA
GetClientRect
CallWindowProcA
SetCursor

kernel32

RtlUnwind
HeapCreate
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
GetStdHandle
GetConsoleOutputCP
ReleaseMutex
FileTimeToSystemTime
GetFileAttributesA
WaitForSingleObject
FindNextFileA
HeapDestroy
GetExitCodeProcess
FreeEnvironmentStringsA
DeleteCriticalSection
GetCurrentProcess
LocalAlloc
SetErrorMode
FreeEnvironmentStringsW
WideCharToMultiByte
GetStringTypeA
InterlockedExchange
WriteFile
GetSystemTimeAsFileTime
HeapReAlloc
GetStringTypeW
GetOEMCP
LocalFree
InitializeCriticalSection
LoadResource
InterlockedDecrement
FormatMessageA
VirtualAlloc
Sleep
VirtualFree
CreateProcessA
SizeofResource
GetVersion
GetModuleHandleW
GetACP
CloseHandle
ReadFile
SetFilePointer
TlsFree
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
GetCPInfo
GetCurrentProcessId
GetEnvironmentStrings
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
GlobalFree
lstrlenA
SetStdHandle
GetLastError
InterlockedIncrement
HeapAlloc
CreateFileA
TlsSetValue
GetFileType
CreateEventA
CreateFileW
CreateEventW
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
ResetEvent
CompareStringA
lstrcpyA
FindFirstFileA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileA
LCMapStringW
GetFileSize
GetStartupInfoA
FreeLibrary
LoadLibraryA
FlushFileBuffers
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
LeaveCriticalSection
GetCurrentThreadId
GetLocaleInfoA
SetEndOfFile
GetConsoleMode
VirtualQuery
TerminateProcess
SetEnvironmentVariableA
MulDiv
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
CreateMutexA
MultiByteToWideChar
UnhandledExceptionFilter
LoadLibraryExA
GetModuleFileNameA
GetVersionExA
ExitProcess
IsDebuggerPresent
SetLastError

advapi32

RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 544KB - Virtual size: 542KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cbed592ee39d3237b1804413dae56ec6

Headers

File Characteristics

Imports

ole32

user32

kernel32

advapi32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 544KB - Virtual size: 542KB

.data Size: 28KB - Virtual size: 29KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 544KB - Virtual size: 542KB

.data
Size: 28KB - Virtual size: 29KB

.rsrc
Size: 4KB - Virtual size: 3KB