3b8c1271912d631075bba2763d409a94_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b8c1271912d631075bba2763d409a94_JaffaCakes118
Size

540KB
MD5

3b8c1271912d631075bba2763d409a94
SHA1

25196196c514ae0b74e1db0f73f3aee191511700
SHA256

db2ccfb4fb8824921f4d07a3a85486a971dcbb66ba9f64b076a38145ea25dff7
SHA512

bf087239b989010647476691968ca8c5686a41ff6f968d1e95f0df59e2e8d445177261d02137f2312dc2c40d6e05bd2aaced7a5c53a49a0f9e997eaf84376e44
SSDEEP

12288:JhH8GtuxuwQmXvlGjjPAHttMFPx1WjlbJdld:JhPjwj9OIHttMFPx1mdld

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b8c1271912d631075bba2763d409a94_JaffaCakes118

Files

3b8c1271912d631075bba2763d409a94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7dbc18688de2f0cb7db845986420a463

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
FindClose
FindFirstFileA
GetFullPathNameA
RtlUnwind
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
GetDriveTypeA
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
SetErrorMode
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
FindResourceExA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFree
GlobalUnlock
MulDiv
lstrcpynA
SetLastError
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
Sleep
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
DeviceIoControl
CreateEventA
WaitForSingleObject
lstrcmpiA
GetCurrentDirectoryA
CreateFileA
GetFileSize
ReadFile
CloseHandle
IsBadWritePtr
GetVersion
GetModuleHandleA
GetWindowsDirectoryA
lstrlenW
GetLastError
LocalAlloc
LocalFree
FormatMessageA
LockResource
WideCharToMultiByte
FindResourceA
SizeofResource
LoadResource
GetLocaleInfoA
GetSystemDefaultLangID
GetModuleFileNameA
SetCurrentDirectoryA
MultiByteToWideChar
SetEnvironmentVariableA
lstrcpyA
lstrcatA
lstrlenA
WinExec
LoadLibraryA
GetProcAddress
FreeLibrary
GetACP
GetVersionExA

user32

IsDialogMessageA
MoveWindow
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CreateDialogIndirectParamA
EndDialog
GetAsyncKeyState
WindowFromPoint
PostThreadMessageA
DestroyMenu
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
SetActiveWindow
SetFocus
AdjustWindowRectEx
GetTopWindow
GetCapture
GetClassInfoA
RegisterClassA
GetMenu
GetSubMenu
GetDlgItem
GetWindowTextLengthA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowPos
RegisterWindowMessageA
IsIconic
GetLastActivePopup
IsWindowEnabled
UnhookWindowsHookEx
RegisterClipboardFormatA
wsprintfA
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
CallNextHookEx
ValidateRect
PeekMessageA
SetWindowsHookExA
PostQuitMessage
SetWindowTextA
IsWindowVisible
GetWindowLongA
GetClassNameA
GetWindowTextA
EnumChildWindows
MapDialogRect
GetWindow
GetWindowPlacement
CopyRect
ShowWindow
GetMenuItemCount
KillTimer
GetCursorPos
SetTimer
GetDesktopWindow
CopyIcon
GetMenuItemID
LoadIconA
GetWindowRect
InflateRect
IsWindow
SetWindowLongA
SetCursor
PtInRect
RedrawWindow
MessageBeep
DestroyCursor
GetParent
WinHelpA
GetKeyState
SendMessageA
ScreenToClient
GetFocus
IsChild
PostMessageA
MessageBoxA
LoadStringA
EnableWindow
ReleaseCapture
GetSysColor
GetClientRect
GetDC
SystemParametersInfoA
SetRect
ReleaseDC
AdjustWindowRect
GetSystemMetrics
OffsetRect
InvalidateRect
SetCapture
GetSysColorBrush
LoadCursorA
GetMenuCheckMarkDimensions
UnregisterClassA

gdi32

DeleteObject
GetDeviceCaps
PtVisible
RectVisible
ExtTextOutA
Escape
EnumFontFamiliesExA
ScaleWindowExtEx
SetWindowExtEx
CreateFontIndirectA
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
SelectObject
SetTextJustification
TextOutA
GetObjectA
GetStockObject
GetTextFaceA
CreateFontA
GetTextExtentPoint32A

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

shell32

ShellExecuteA

comctl32

PropertySheetA
ord17

oledlg

ord8

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
OleUninitialize
OleInitialize
CoInitializeEx
CoInitialize
CoUninitialize
CoCreateInstance
CoFreeUnusedLibraries

oleaut32

SysAllocStringLen
SysFreeString

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

InternetCanonicalizeUrlA

Sections

.text
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7dbc18688de2f0cb7db845986420a463

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

shell32

comctl32

oledlg

ole32

oleaut32

version

wininet

Sections

.text Size: 284KB - Virtual size: 283KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 80KB - Virtual size: 94KB

.rsrc Size: 44KB - Virtual size: 43KB

.rrdata Size: 72KB - Virtual size: 72KB

.text
Size: 284KB - Virtual size: 283KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 80KB - Virtual size: 94KB

.rsrc
Size: 44KB - Virtual size: 43KB

.rrdata
Size: 72KB - Virtual size: 72KB