3b0194a6c00d838f5ed7ea2dee061078_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b0194a6c00d838f5ed7ea2dee061078_JaffaCakes118
Size

61KB
MD5

3b0194a6c00d838f5ed7ea2dee061078
SHA1

8055b4792f3c2650b77873ca47bf90ae540fdd37
SHA256

25babd54485f853db6583a5888f0321b39d29dad9db0137655e968bacde61198
SHA512

6e63bbee48bf3702e0b313ea7c78bd6be932f4b655594740cde74ac672b23a5cc5984603e5bea9e7791de024d85af3c1b5b58a4a2854ea9f33ef7e2a6c24bf34
SSDEEP

1536:c4OcXU7N+hzGIDsSLGQN8bpaRkxh5Oy68fUyjzR92bJ:ckuc9NzLGQN8NaRkK8fUuRYbJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/win/win.exe

Files

3b0194a6c00d838f5ed7ea2dee061078_JaffaCakes118
.zip
win/ReadMe.txt
win/win.exe
.exe windows:4 windows x86 arch:x86

e6c4f6edd8745f5cc2ce37ffbed151d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
GetProcAddress
WinExec
GetTickCount
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetLocalTime
GlobalFree
GetStringTypeW
GetStringTypeA
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
GetCurrentProcess
TerminateProcess
WriteFile
CloseHandle
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
SetCurrentDirectoryA
SetEnvironmentVariableA
GlobalAlloc
GetWindowsDirectoryA
GetLastError
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
HeapAlloc
HeapFree
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile

user32

GetSystemMetrics
MoveWindow
GetMenu
PostMessageA
ReleaseDC
GetDC
GetWindowRect
ChangeDisplaySettingsA
SendMessageA
CreateWindowExA
EndPaint
BeginPaint
SetCursor
LoadCursorA
FillRect
wsprintfA
MessageBoxA
GetCursorPos
EnumDisplaySettingsA
DestroyWindow
IsDlgButtonChecked
GetWindowTextA
GetDlgItemTextA
GetDlgCtrlID
GetClientRect
GetFocus
SetScrollRange
ScrollWindow
SetScrollPos
PostQuitMessage
DefWindowProcA
InvalidateRect
FindWindowA
GetSystemMenu
AppendMenuA
PeekMessageA
TranslateMessage
DispatchMessageA
KillTimer
GetMessageA
SetTimer
SetWindowLongA
ShowScrollBar
UpdateWindow
GetActiveWindow
LoadIconA
RegisterClassA
ShowWindow
SetActiveWindow
SetWindowPos
GetAsyncKeyState
ShowCursor
SetFocus
SetWindowTextA
SetCursorPos

gdi32

SetBkMode
TextOutA
SetStretchBltMode
StretchBlt
DeleteObject
CreateFontIndirectA
GetStockObject
SelectObject
GetTextMetricsA
CreatePen
CreateSolidBrush
SetTextColor
GetTextExtentPoint32A
GetTextExtentPointA
CreatePalette
SetDIBColorTable
GetDeviceCaps
MoveToEx
LineTo
SetPixel
GetPixel
SelectPalette
StretchDIBits
Rectangle
RealizePalette
BitBlt
DeleteDC
CreateDIBSection
CreateCompatibleDC

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteExA
ShellExecuteA

winmm

sndPlaySoundA
mciSendStringA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6c4f6edd8745f5cc2ce37ffbed151d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

winmm

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 14KB - Virtual size: 36KB

.rsrc Size: 1024B - Virtual size: 944B

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 14KB - Virtual size: 36KB

.rsrc
Size: 1024B - Virtual size: 944B