3be462255368b70402d2e6ceb408ea1c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3be462255368b70402d2e6ceb408ea1c_JaffaCakes118
Size

229KB
MD5

3be462255368b70402d2e6ceb408ea1c
SHA1

38f9ba08f608fb8b35315bef5fcb6e4db624b1c1
SHA256

562dccbc43e1c384f272dd42397ca6f54a1bac3498cf2f1d393dc14b833a3ccc
SHA512

9535592aeed39ded125ea878a695b19e89a2d32fe64e3d5d295d2129a37caf2af896e7d9d5e7085d136ad67a669e007cb691975cad6bdc0c34cb593bc1154695
SSDEEP

3072:OaON2iG6fND4nMrB3e4RqjiZIWBgcFp4mxkBSLnbQNgML6vo7mXSzR1:OBNnXIOgcYSvQ+OyQAG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3be462255368b70402d2e6ceb408ea1c_JaffaCakes118

Files

3be462255368b70402d2e6ceb408ea1c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1db7c829ce9c442ecf4244cd5d8daf30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
CreateFontIndirectA
CreatePenIndirect
CreateDIBitmap
CreatePalette

kernel32

IsBadReadPtr
lstrlenA
GetProcAddress
ExitThread
LocalAlloc
GetModuleHandleA
DeleteFileA
GetEnvironmentStrings
LoadLibraryA
FreeResource
SetHandleCount
MulDiv
GetVersionExA
GetStringTypeW
VirtualAlloc
VirtualAllocEx
GetVersion
GlobalAlloc
ExitProcess
GetCommandLineA
MoveFileExA

user32

LoadBitmapA
GetDC
GetFocus
InvalidateRect
ReleaseCapture
CreateWindowExA
MessageBeep
GetScrollPos
ReleaseDC
ScrollWindow
GetWindowTextA
DeleteMenu
SetClassLongA
KillTimer
FrameRect
CheckMenuItem
GetCursor
IsDialogMessageA
RegisterClassA
MoveWindow
OpenClipboard
PostQuitMessage
FillRect
InsertMenuItemA
CharLowerA
DrawIconEx
EnumWindows
SetWindowsHookExA
GetForegroundWindow
CharUpperBuffA
GetKeyNameTextA
ShowScrollBar
ScreenToClient
GetScrollInfo
PostMessageA
SetRect
WaitMessage
ShowOwnedPopups
UnhookWindowsHookEx
SetWindowLongW
GetMenuState
GetClassLongA
PeekMessageW
DispatchMessageW
GetClipboardData
GetWindowLongA
GetSystemMetrics
EndPaint
IsRectEmpty
DrawIcon
PtInRect
DrawTextA
SetWindowPos
GetPropA
GetWindowDC
GetClassInfoA
GetWindow
DispatchMessageA
CallNextHookEx
GetClientRect
SetClipboardData
DestroyMenu
ChildWindowFromPoint
SetMenuItemInfoA
BeginPaint
SetForegroundWindow
GetMenuItemCount
IsWindow
EnableWindow
SetWindowTextA
CreateMenu
LoadStringA
CreateIcon
SetCursor
EnumThreadWindows
SetFocus
SetWindowPlacement
GetWindowLongW
GetDCEx
GetMenuStringA
RegisterClipboardFormatA
RemovePropA
SetActiveWindow
ClientToScreen
PeekMessageA
SendMessageW
EmptyClipboard
TranslateMDISysAccel
UnregisterClassA
GetWindowThreadProcessId
SetWindowLongA
CharLowerBuffA
AdjustWindowRectEx
GetParent
DrawFrameControl
MsgWaitForMultipleObjects
CharNextW
ShowWindow
LoadCursorA
GetMenu
GetMenuItemInfoA
CreatePopupMenu
InflateRect
CallWindowProcA
GetWindowRect
GetTopWindow
GetWindowPlacement
DestroyWindow
EqualRect
TrackPopupMenu
RedrawWindow
IsIconic
GetSystemMenu
SetScrollRange
RegisterWindowMessageA
GetClassNameA
WindowFromPoint
OffsetRect
IsZoomed
GetMenuItemID
GetIconInfo
DrawMenuBar
InsertMenuA
UpdateWindow
wsprintfA
SetPropA
MapWindowPoints
LoadKeyboardLayoutA
DestroyCursor
IsWindowUnicode
GetMessagePos
GetKeyboardLayout
OemToCharA
EnableMenuItem
GetCursorPos
IsWindowVisible
CloseClipboard
GetSysColor
GetCapture
GetKeyState
DestroyIcon
GetKeyboardState
SystemParametersInfoA
IntersectRect
GetLastActivePopup
FindWindowA
CharToOemA
GetSubMenu

shell32

SHGetFolderPathA
SHGetDesktopFolder
SHFileOperationA
SHGetSpecialFolderLocation
DragQueryFileA

version

VerInstallFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

CODE
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc6
Size: 1024B - Virtual size: 1006B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 1024B - Virtual size: 977B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1db7c829ce9c442ecf4244cd5d8daf30

Headers

File Characteristics

Imports

gdi32

kernel32

user32

shell32

version

Sections

CODE Size: 69KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 840B

.rsrc6 Size: 1024B - Virtual size: 1006B

.rsrc2 Size: 5KB - Virtual size: 4KB

.rsrc8 Size: 512B - Virtual size: 252B

.rsrc4 Size: 1024B - Virtual size: 977B

.rsrc0 Size: 149KB - Virtual size: 148KB

.rsrc Size: 1024B - Virtual size: 976B

CODE
Size: 69KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 840B

.rsrc6
Size: 1024B - Virtual size: 1006B

.rsrc2
Size: 5KB - Virtual size: 4KB

.rsrc8
Size: 512B - Virtual size: 252B

.rsrc4
Size: 1024B - Virtual size: 977B

.rsrc0
Size: 149KB - Virtual size: 148KB

.rsrc
Size: 1024B - Virtual size: 976B