37a3f38376da3228d9ec2a52e50543ce_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37a3f38376da3228d9ec2a52e50543ce_JaffaCakes118
Size

96KB
MD5

37a3f38376da3228d9ec2a52e50543ce
SHA1

c9c3c1a3a6986fe066cd77f4630c21924a0c8b63
SHA256

bd9cbbbc3bd96b48f44b47718c5e9b8b9abe6395cefa7e90c01ea33fe01ad353
SHA512

8149dfe84c2c3acc540906bdb17c218073d00933dc9ddb9122f59cec22805cbc4979cf0c8d8626e5080105ada91d1d3fd6c4dfeacdfb90a40821889475b7120b
SSDEEP

3072:UGRl6IqshHrtS+v+aY9h+zKXecbk2n7ZoN:J6IVhLtS+vdzTcbk2n7eN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37a3f38376da3228d9ec2a52e50543ce_JaffaCakes118

Files

37a3f38376da3228d9ec2a52e50543ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

160d0ffb2ff0d58cadf49f3ae9bf23d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA

wininet

HttpQueryInfoW
InternetCrackUrlW
InternetCloseHandle
DeleteUrlCacheEntryW
InternetCombineUrlW

user32

DestroyMenu
ShowOwnedPopups
GetAsyncKeyState
CharUpperA
GetMessageTime
GetMessageA
PostQuitMessage
wvsprintfA
ValidateRect

ole32

StgIsStorageFile
CoRevokeClassObject
CoUninitialize
CoInitialize
OleSetClipboard
OleDuplicateData
StgOpenStorage

kernel32

GetDriveTypeA
GetCurrentThreadId
SystemTimeToFileTime
SetEnvironmentVariableA
FindNextFileA
GlobalWire
ReadFile
WaitForMultipleObjects
DuplicateHandle
SetEvent
GetTickCount
SetLastError
GetSystemTimeAsFileTime
GetEnvironmentVariableA
GlobalFindAtomA
WriteFile
GetShortPathNameW
Sleep
CreateProcessA
LocalFileTimeToFileTime
IsValidLanguageGroup
GetCurrentProcess
CopyFileExW
ReleaseActCtx
GetDiskFreeSpaceA
GetVersionExA
GetNumberFormatA
EnumSystemCodePagesW
GetCommandLineA
FormatMessageA
DeleteFileA
CloseHandle
GetPrivateProfileIntW
SetHandleInformation
FindFirstFileA
GetExitCodeProcess
LeaveCriticalSection
GetCurrentProcessId
EnterCriticalSection
GetSystemTime
SetEndOfFile
DeviceIoControl
GetThreadTimes
GlobalGetAtomNameA
SetFileTime
SetErrorMode
TerminateProcess
CreateFileA
GetFileSize
DeleteCriticalSection
GlobalDeleteAtom
QueryPerformanceCounter
HeapFree
GetProcessHeap
CopyFileA
GetProcAddress
GetFileAttributesA
GetSystemDirectoryA
SetFileAttributesA
HeapAlloc
SetUnhandledExceptionFilter
GlobalFlags
LCMapStringA
SetFilePointer
SwitchToThread
OpenEventA
MoveFileA
FlushFileBuffers
GlobalAddAtomA
LCMapStringW
QueryDosDeviceA
GetModuleFileNameA
GetCurrentDirectoryA
DosDateTimeToFileTime
FindClose
MoveFileExA
CreateEventW

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 139KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

160d0ffb2ff0d58cadf49f3ae9bf23d0

Headers

File Characteristics

Imports

comdlg32

wininet

user32

ole32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 7KB - Virtual size: 119KB

.debug Size: 5KB - Virtual size: 5KB

.pdata Size: 139KB - Virtual size: 251KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 7KB - Virtual size: 119KB

.debug
Size: 5KB - Virtual size: 5KB

.pdata
Size: 139KB - Virtual size: 251KB