3c3ce78ebed6bdd500cb81ae88b8f316_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3c3ce78ebed6bdd500cb81ae88b8f316_JaffaCakes118
Size

100KB
MD5

3c3ce78ebed6bdd500cb81ae88b8f316
SHA1

0262b93a911746b8d51517a6eb567571f566a6d1
SHA256

bc94b2863baf07aa27ea2c46768e5d78573d42ec0396410c5b45061e90759045
SHA512

8d8dedd9afc0fe2ac2631741cf4b9310c9b3f6f805ac05f19efd6161c573a894b90b6ff688bf9c4a811f6badb4e17085103246d804ff97db5e176f4774d8c973
SSDEEP

1536:2kAsypY9vWt24H5vaYRv4Am4ntuQDRlRWzXj:/c4vWBHNaupjtNlRWLj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3c3ce78ebed6bdd500cb81ae88b8f316_JaffaCakes118

Files

3c3ce78ebed6bdd500cb81ae88b8f316_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48f9920e30e93dfd0ca948a9fab91508

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA

comdlg32

GetSaveFileNameA

kernel32

FormatMessageA
EnumCalendarInfoA
SetThreadLocale
GetCurrentThread
CloseHandle
GetFileSize
GetThreadLocale
CreateEventA
ResetEvent
GetStringTypeA
FreeResource
GetLastError
GlobalAlloc
GlobalAddAtomA
CompareStringA
Sleep
GetUserDefaultLCID
GetCPInfo
GetTickCount
MoveFileExA
FindResourceA
SetHandleCount
GetLocaleInfoA
lstrcpynA
MoveFileA
HeapFree
GetCurrentThreadId
lstrcatA
GetSystemDefaultLangID
GetOEMCP
LoadLibraryExA
GetCurrentProcessId
HeapAlloc
GetEnvironmentStrings
VirtualQuery
VirtualAllocEx
ExitThread
GetDiskFreeSpaceA
GetModuleHandleA
LoadLibraryA
WriteFile
WaitForSingleObject
GetModuleFileNameA
lstrlenA
GetProcessHeap
VirtualAlloc
SetEndOfFile
GetProcAddress
SetErrorMode
GetStringTypeW

msvcrt

tan
abs
strcmp
memcpy
time

shlwapi

PathGetCharTypeA
SHQueryValueExA
SHQueryInfoKeyA
PathIsContentTypeA
SHDeleteKeyA
SHGetValueA
SHSetValueA
PathFileExistsA
PathIsDirectoryA
SHDeleteValueA

user32

CharLowerBuffA
DrawIconEx
FindWindowA
GetKeyboardType
CreateMenu
GetClassNameA
CloseClipboard
SetPropA
DefMDIChildProcA
InvalidateRect
SendMessageA
GetSubMenu
MapVirtualKeyA
CharToOemA
GetClientRect
CallWindowProcA
IsChild
CreatePopupMenu
IsRectEmpty
ClientToScreen
GetWindow
CreateIcon
GetMenuItemInfoA
GetWindowDC
ActivateKeyboardLayout
GetKeyNameTextA
IsDialogMessageA
FillRect
SetMenu
GetCursor
ReleaseDC
DrawEdge
SetScrollInfo
GetMenu

ole32

CoGetContextToken
CoFreeUnusedLibraries
CreateBindCtx
StgCreateDocfileOnILockBytes
CoCreateGuid
ReleaseStgMedium
OleRun
CLSIDFromString
CoDisconnectObject

gdi32

GetDIBits
CreateBitmap
SaveDC
SelectObject
CreatePenIndirect
GetBitmapBits
SetBkColor
SelectPalette

comctl32

ImageList_Read
ImageList_DrawEx
ImageList_Remove
ImageList_GetBkColor
ImageList_Destroy
ImageList_Draw

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 582B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48f9920e30e93dfd0ca948a9fab91508

Headers

File Characteristics

Imports

version

comdlg32

kernel32

msvcrt

shlwapi

user32

ole32

gdi32

comctl32

Sections

.text Size: 29KB - Virtual size: 29KB

.edata Size: 1024B - Virtual size: 582B

BSS Size: 68KB - Virtual size: 68KB

.text
Size: 29KB - Virtual size: 29KB

.edata
Size: 1024B - Virtual size: 582B

BSS
Size: 68KB - Virtual size: 68KB