03dd64a5c7bedbc2345b4f885288c982_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03dd64a5c7bedbc2345b4f885288c982_JaffaCakes118
Size

169KB
MD5

03dd64a5c7bedbc2345b4f885288c982
SHA1

d8ec51af3a9cc35df4809de90c7cbf2e7c127ddc
SHA256

b7d2ff15f3c8661fb8599d8805f9c54861003d642523c16ab49a5a17a84043b1
SHA512

c64dd031adc759417b47d5de539e96658ada02efcb3cf99b97696a999c5b7df0ae4469a97e88254a1eb46307e9ae4634f6d381bc3083703f6c24d9a8e29ef1bc
SSDEEP

3072:Vvig3HevHzw3brqKUjo5AEt1PkWr2zEa6AiDJ2WqYSq1erJqCWm:Ni2eSbuIhkWr2ViDZqYz1eZW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03dd64a5c7bedbc2345b4f885288c982_JaffaCakes118

Files

03dd64a5c7bedbc2345b4f885288c982_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3b03919663b12260700f5acf436166b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
FindFirstFileA
FindNextFileA
FindClose
LCMapStringA
GetStartupInfoW
CreateFileA
ReadFile
CloseHandle
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
TlsAlloc
TlsGetValue
TlsFree
GetConsoleMode
CreateFileW
WriteFile
GetCurrentDirectoryA
GetSystemDefaultLCID
InterlockedIncrement
GetModuleHandleA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetLocaleInfoW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FindFirstFileW
FindNextFileW
GetFileSize
SetEndOfFile
CreateThread
GetCurrentThreadId
ResumeThread
SetThreadPriority
GetExitCodeThread
ExitThread
TerminateThread
LoadLibraryA
LoadLibraryW
GetProcAddress
TlsSetValue
CompareStringW
FindResourceA
LoadResource
SizeofResource
FreeResource
MulDiv
UnmapViewOfFile
MapViewOfFile
lstrlenW
VirtualProtect
CreateMutexA
ReleaseMutex
OpenMutexA
lstrcmpiA
RtlUnwind
FindResourceW
LockResource
GetUserDefaultLangID
lstrcpynA
ExitProcess
CopyFileA
LocalFree
lstrcmpA
FileTimeToSystemTime
GetModuleFileNameW
SetFilePointer
GetFileTime
GlobalFree
GetUserDefaultLCID
SetFileAttributesA
WaitForMultipleObjects
GetStdHandle
GetVersion
GetLocaleInfoA
CreateEventA
CreateEventW
SetEvent
ResetEvent
QueryPerformanceCounter
GlobalAlloc
GetLocalTime
SetFileTime
GetCPInfo
FlushFileBuffers
GetACP
WideCharToMultiByte
UnhandledExceptionFilter
InterlockedDecrement
GetSystemInfo
GetTickCount
GetDriveTypeA
FileTimeToDosDateTime
GetSystemDirectoryW
DeleteFileW
VirtualAlloc
WriteConsoleA
CreateFileMappingA
LoadLibraryExA
GetCommandLineA
GetEnvironmentStringsW
LCMapStringW
GlobalUnlock
GetCurrentThread
GetConsoleOutputCP
GetEnvironmentVariableA
GetShortPathNameA
SetStdHandle
GetTempFileNameA
TerminateProcess
GetStringTypeExA
lstrcpyA

msvcrt

strcpy
strrchr
fopen
sprintf
fwrite
_filelengthi64
_strcmpi
_mkdir
_initterm
wctomb
ungetc
fprintf
towupper
_stat
memmove
_read
free
strncat
__getmainargs
_mbsrchr
__p__commode
_wfopen
_fdopen
puts
__p__environ
_controlfp
_mktemp
strstr
sin
__dllonexit
_getch
calloc
_fullpath
_utime
__pioinfo
pow
_amsg_exit
_iob
time
_cexit
wcstol
strpbrk
_isctype
exit
perror
_pctype
_lock
bsearch
_setjmp
swscanf
__CxxFrameHandler
_c_exit
_snwprintf
_ftol
strtok
_getpid
_wcsnicmp
strspn
_stricmp
__initenv
_osver
_fileno
getenv
_umask
wcsncmp
rand
atol
_wcsicmp
abort
printf
_unlink
strncpy
fgets
_setjmp3
_strlwr
fsetpos
cos
_except_handler3
_getcwd
sscanf
strcmp
vsprintf
tolower
_setmode
__set_app_type
strtol
toupper
_purecall
_strdup
wcscmp
iswctype
clock
_write
fseek
_kbhit
_itoa
isxdigit
strchr
_flsbuf
srand
malloc
gmtime
strerror
memchr
_putenv
wcscspn
_vsnprintf
_vsnwprintf
fgetc
_close
longjmp
wcslen
_unlock
__p___initenv
memcpy
swprintf
realloc
wcsrchr
fputc
signal
sqrt
wcsstr
isdigit
strncmp
ceil
putchar
fclose
atof
setlocale
_chmod
rewind
localeconv
iswdigit
_CIpow
_open_osfhandle
strlen
__mb_cur_max
__setusermatherr
qsort
_ismbblead
_mbsicmp
isspace
_beginthreadex
__p__fmode
_get_osfhandle
_mbscmp
strcspn
memcmp
_strnicmp
_itow
_exit
log
wcschr
ctime
wcstombs
iswspace
__lc_codepage
clearerr
_lseek
_wtol
strtoul
_ultoa
wcstoul
_wcslwr
fgetpos
towlower
_errno
atoi
rename
_snprintf
ftell
_fstat
wcsncpy
_isatty
_filbuf
_wtoi
_pipe
remove
_open
_adjust_fdiv
memset
isleadbyte
_assert
__badioinfo
_CIsqrt
fflush
floor
fputs
_onexit
_dup
_wcsupr
localtime
_acmdln

user32

wsprintfA
IsChild
PeekMessageA
InsertMenuA
GetParent
IsIconic
IsDialogMessageA
GetClientRect
IsRectEmpty
DispatchMessageA
GetWindowDC
SetWindowsHookExA
DrawMenuBar
ScreenToClient
GetMessagePos
EndDialog
SetMenu
GetMenuItemCount
MapWindowPoints
GetWindowRect
GetActiveWindow
GetMessageA
KillTimer
LoadBitmapA
RedrawWindow
SetWindowTextA
SystemParametersInfoA
GetSystemMetrics
ShowCursor
GetMenu
DestroyWindow
GetDCEx
GetDesktopWindow
GetCursorPos
BeginPaint
FindWindowA
CheckMenuItem
InsertMenuItemA
DialogBoxParamA
GetClassInfoA
GetCapture
EnableMenuItem
GetKeyboardType
TrackPopupMenu
CreateMenu
GetWindowPlacement
ClientToScreen
SetCursor
GetMenuItemID
ScrollWindow
DestroyIcon
FillRect
DrawFrameControl
SetActiveWindow
GetTopWindow
ReleaseCapture
SetScrollPos
RemovePropA
DrawIcon
EqualRect
GetIconInfo
EndPaint
CharNextA
ShowOwnedPopups
SetScrollInfo
SetFocus
GetSysColor
OffsetRect
PostQuitMessage
GetMenuStringA
EmptyClipboard
WinHelpA
SetTimer
SetRect
GetClassNameA
CallNextHookEx
GetMenuState
SendDlgItemMessageA
LoadCursorA
GetDlgItem
SetWindowLongA
ShowWindow
GetWindowThreadProcessId
RemoveMenu
IsWindowVisible
UnhookWindowsHookEx
CallWindowProcA
GetScrollRange
CreateWindowExA
GetSysColorBrush
IntersectRect
GetDC
CreatePopupMenu
DrawEdge
DefWindowProcA
GetWindowLongA
RegisterClipboardFormatA
SetWindowPos
CharLowerA
SetClipboardData
EnumWindows
OpenClipboard
GetWindow
IsWindow
DestroyCursor
SetCapture
SetClassLongA
DeleteMenu
GetScrollInfo
MessageBoxA
MessageBeep
AdjustWindowRectEx
GetPropA
GetWindowTextA
InvalidateRect
RegisterClassA
UnregisterClassA
GetSubMenu
OemToCharA
DestroyMenu
InflateRect
GetScrollPos
UpdateWindow
PtInRect
EnableWindow
DrawTextA
EnumThreadWindows
GetSystemMenu
SetWindowPlacement
SendMessageA
PostMessageA
IsZoomed
IsWindowEnabled
LoadIconA
SetForegroundWindow
CloseClipboard
WaitMessage
LoadStringA
GetForegroundWindow
DrawIconEx

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f3b03919663b12260700f5acf436166b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 55KB - Virtual size: 55KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 24KB - Virtual size: 44KB

.text
Size: 55KB - Virtual size: 55KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 24KB - Virtual size: 44KB