3bf99024a870cae07314959c2061e31f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3bf99024a870cae07314959c2061e31f_JaffaCakes118
Size

565KB
MD5

3bf99024a870cae07314959c2061e31f
SHA1

01ac25ebecda6efa7e4da89fbef799985408665a
SHA256

d3c86f29f269b70a225ec72b9fc788ea9f4dd1c82adf16fe8326e485994b17a0
SHA512

fa645ae9f3a9874e0a866741e6212bbf5d387c6d473e6576eed14e0d0427622a8422e29e3b1f977503413df5f296f3c0eca024e8af74369902810e034191a3df
SSDEEP

12288:FvHiAWCioj0DiXpnk8xphn5ar7vP6+aCEViy2w0D4lq:lViDDQNkKpFwr7H6+fEVrwP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3bf99024a870cae07314959c2061e31f_JaffaCakes118

Files

3bf99024a870cae07314959c2061e31f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c757baab657fc5d6f0384d1f8663514f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
Sleep
LoadLibraryA
SleepEx
GetModuleHandleA
IsValidCodePage
UnmapViewOfFile
FreeLibrary
InterlockedExchangeAdd
GetCommandLineW
SetThreadPriority
VirtualAlloc
SetEnvironmentVariableA
GlobalAlloc
FindFirstFileA
GetEnvironmentStringsW
WaitForMultipleObjects
CloseHandle
LoadLibraryExA
LeaveCriticalSection
EnterCriticalSection
GetEnvironmentVariableA
GetDateFormatA
QueryPerformanceCounter
IsDebuggerPresent
GetSystemTimeAsFileTime
HeapFree
LoadLibraryExW
GetModuleFileNameW
DeviceIoControl
SetErrorMode
LocalFree
ResetEvent
CreateFileMappingA
VirtualProtect
LoadResource
lstrlenA
GetStdHandle
GetModuleHandleA
MultiByteToWideChar
FormatMessageW
LCMapStringW
VirtualAlloc
WriteFile
HeapSize
GetSystemInfo
GetDiskFreeSpaceA
VirtualFree
WaitForSingleObject
FlushFileBuffers
RaiseException
MapViewOfFileEx
GetLocaleInfoA
GetCPInfo
GetLastError
GetLocaleInfoW
ReadFile
LocalAlloc
ExitProcess
MapViewOfFile
GetStringTypeW
GetFullPathNameA
MoveFileA
WideCharToMultiByte
SetUnhandledExceptionFilter
SetLastError
GetCommandLineA
GetModuleFileNameA
FreeEnvironmentStringsW
GetThreadLocale
FindNextFileA
CompareStringW
FindResourceW
LockResource
SetEvent
GetProcAddress
GetProcessHeap
GetStartupInfoW
InitializeCriticalSection
SetHandleCount
IsValidLocale
GetSystemTime
CreateFileA
CreateThread
GetTimeZoneInformation
SetStdHandle
lstrcmpiW
LoadLibraryA
FindResourceA
FindNextFileW
GetOEMCP
SetFilePointer
VirtualQuery
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
GetProcAddress
HeapDestroy
CreateMutexA
GetLocalTime

user32

PostMessageW
KillTimer
SetCursorPos
SetFocus
GetCursorPos
BeginPaint
MessageBoxA
SendMessageW
GetWindowDC
InvalidateRect
GetMenuStringW
DrawFocusRect
PostMessageA
CheckMenuItem
DefWindowProcW
GetWindowContextHelpId
GetDesktopWindow
GetSystemMenu
CreateWindowExW
GetFocus
GetMenuItemInfoW
SetMenuDefaultItem
SetMenuItemInfoA
DestroyMenu
EndPaint
PostQuitMessage
IsIconic
PtInRect
GetMenuState
GetWindowTextLengthW
SetWindowLongA
GetActiveWindow
GetDlgItemInt
GetSubMenu
GetWindowThreadProcessId
AllowSetForegroundWindow
MessageBeep
ReleaseDC
DispatchMessageA
MsgWaitForMultipleObjectsEx
GetParent
ShowWindowAsync
EndDialog
GetWindowPlacement
GetSystemMetrics
SetMenuItemInfoW
CreateWindowExA
ShowWindow
TrackPopupMenu
GetWindowLongW
MessageBoxW
GetSysColorBrush
ClientToScreen
GetWindowWord
GetMenuItemID
GetClientRect
SetWindowPos
GetDlgItemTextA
RegisterClassA
LoadIconA
GetKeyState
GetDlgItemTextW
DestroyIcon

ole32

CoGetClassObject
CoCreateInstance
OleRun
WriteFmtUserTypeStg
CoGetInterfaceAndReleaseStream
ProgIDFromCLSID
OleSaveToStream
CoDisconnectObject
OleIsCurrentClipboard
DoDragDrop
ReleaseStgMedium
CoRegisterClassObject
StringFromCLSID
OleSetClipboard
CreateStreamOnHGlobal
StgOpenStorageEx
CoRevokeClassObject
GetRunningObjectTable
CoRegisterMessageFilter
CLSIDFromProgID
CoMarshalInterThreadInterfaceInStream
CoTaskMemFree
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
OleSaveToStream
CoInitializeEx

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c757baab657fc5d6f0384d1f8663514f

Headers

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 7KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 7KB

.rsrc
Size: 1KB - Virtual size: 1KB