3ce5fcefcb76f79aaa66c37e715db2e3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3ce5fcefcb76f79aaa66c37e715db2e3_JaffaCakes118
Size

60KB
MD5

3ce5fcefcb76f79aaa66c37e715db2e3
SHA1

70eac8fdfa77f82be89caba92198c13fa9333bbd
SHA256

ab7e031c396fb25b05ff24f53fdad85b883af9c4c23287eb2bfe93cdcfe3ec8a
SHA512

70a7366821ec4850b238dc32f848769fb3e998d864383f860a6e3361a6d1fb6f9a8b808ae64ad9443c46ea4f2dd0f11a5853056fdc5a25f94cd100dda2ab7d36
SSDEEP

1536:kPX/XQNHwgRTzYdEWDmLVlZeKYGiDWxiNd1GzNqY3uA:kPyJTkdwbGGiDWcNTGFeA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ce5fcefcb76f79aaa66c37e715db2e3_JaffaCakes118

Files

3ce5fcefcb76f79aaa66c37e715db2e3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

43086c2caa8dbd01e2c5baab7a99a6b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedDecrement
lstrlenW
LCMapStringA
WriteConsoleA
GetModuleFileNameW
GlobalAlloc
TlsSetValue
FormatMessageW
IsValidCodePage
CreateFileW
lstrcpynW
QueryPerformanceCounter
HeapSize
GetOEMCP
SetEvent
EnumSystemLocalesA
WriteConsoleW
SetEndOfFile
GlobalSize
FindClose
GetSystemInfo
VirtualAlloc
LoadLibraryA
GetLocalTime
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
GetCPInfo
GetACP
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentProcess
GetCommandLineA
GetStartupInfoA
GetVersionExA
UnhandledExceptionFilter
GetModuleFileNameA
VirtualFree
GlobalFree
GetModuleHandleW
CreatePipe
GetConsoleOutputCP
GetModuleHandleA
Sleep
FindFirstFileW
FreeEnvironmentStringsW
SetFilePointer
GetStdHandle
GetLongPathNameW
GetFileType
CloseHandle
LockResource
LCMapStringW
GetTickCount
InterlockedIncrement
FindNextFileW
GetConsoleMode
TerminateProcess
ExpandEnvironmentStringsW
GetCurrentThreadId
SetStdHandle
DeleteFileW
GetProcAddress
SetLastError
FindResourceW
ExitProcess
SetCurrentDirectoryW
GetVersionExW
GetFullPathNameW
HeapAlloc
SetHandleCount
LocalLock
TlsGetValue
WriteFile
VirtualProtect
GetDriveTypeW

user32

SetScrollPos
LoadIconW
SetWindowPlacement
PeekMessageW
HideCaret
DialogBoxParamW
LoadStringW
SetDlgItemInt
GetKeyboardState
FillRect
CreatePopupMenu
GetDlgItemTextW
DrawTextW
TrackPopupMenu
GetCapture
RegisterWindowMessageW
GetMenu
SetScrollInfo
PostQuitMessage
GetScrollRange
DrawIcon
TranslateAcceleratorW
FindWindowW
GetMenuItemCount
SetWindowTextW
InsertMenuW
IsDialogMessageA
SetParent
SetScrollRange
EnableWindow
IsDialogMessageW
RegisterClassW
GetSystemMetrics
ShowScrollBar
DrawMenuBar
GetWindowLongW
GetMonitorInfoW
IsWindowVisible
SetClipboardData
SetWindowsHookExW
SetMenuItemInfoW
CheckMenuItem
RedrawWindow
CreateMenu
SetFocus
CharUpperW
LoadCursorW
SystemParametersInfoW
DrawTextExW
EndDeferWindowPos
OpenClipboard
CallWindowProcA
GetDlgItemInt
RealChildWindowFromPoint
GetDlgItem
GetFocus
SetWindowLongW
DestroyWindow
BeginDeferWindowPos
DialogBoxIndirectParamW
CallNextHookEx
GetCursorPos

gdi32

EndPage
AddFontResourceW
SelectObject
GetPixel
StartDocW
GetStockObject
GetDeviceCaps
CreateHatchBrush
MoveToEx
CreateFontW
OffsetWindowOrgEx
GetROP2
CreatePen
DeleteObject
CreateCompatibleDC
BitBlt
CreateFontIndirectW
CreatePatternBrush
PatBlt
GetObjectW
StartPage
EndDoc
RestoreDC
ExtTextOutW
LineTo
CreateSolidBrush
SetWindowOrgEx
GetTextExtentPoint32W
SetBkColor
SaveDC
SetBrushOrgEx
RemoveFontResourceW
DPtoLP
GetTextMetricsW
Rectangle
EnumFontFamiliesExW
SetBkMode
CreateBitmap
GetTextExtentPointW
SetROP2

comdlg32

ReplaceTextA
GetSaveFileNameA
ReplaceTextW
ChooseFontW
GetSaveFileNameW
GetFileTitleW
GetFileTitleA
PrintDlgA
ChooseFontA
PageSetupDlgW
GetOpenFileNameW
PageSetupDlgA
ChooseColorA
PrintDlgW
ChooseColorW
GetOpenFileNameA
FindTextW
FindTextA

ole32

WriteClassStm
StgOpenAsyncDocfileOnIFillLockBytes

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43086c2caa8dbd01e2c5baab7a99a6b7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 14KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 14KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 4KB