3cb92f12ee5150f42e7b810a9c81c840_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3cb92f12ee5150f42e7b810a9c81c840_JaffaCakes118
Size

176KB
MD5

3cb92f12ee5150f42e7b810a9c81c840
SHA1

365a9ccb8483909bf838eb21b158e3d2d596c6cf
SHA256

8cfce610b1fee1f6047246e2eef71cd58fdaf82e65b4f3f8e44e5cdaf4ea0cdb
SHA512

d83648fc022ebf7164fabcd1504191c6fd17b1e637343bd49fc2bdc6c81b2d0e29c09ec9834b9e74daa60710132341dc6d5cb7352508a00de07490521d8cd3d2
SSDEEP

3072:JvXEDlr2risbKd36KzUNDeKBC5CH+xF7vCww95YeoLoSqtIzp:JvXEDF2rtb+8pBC564ubYe5t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cb92f12ee5150f42e7b810a9c81c840_JaffaCakes118

Files

3cb92f12ee5150f42e7b810a9c81c840_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90a5d83a1797da7e3b0f1ec7bf35231a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
GetPrivateProfileStringA
GetModuleFileNameA
GetModuleHandleA
LoadLibraryA
GetACP
ExitThread
ResetEvent
CreateEventA
Beep
SetEvent
CreateThread
FreeLibrary
GetProcAddress
CopyFileA
lstrcpynA
lstrcpyA
GetWindowsDirectoryA
WinExec
GetSystemDirectoryA
OpenFileMappingA
DeviceIoControl
UnmapViewOfFile
MapViewOfFile
GetVersionExA
lstrcatA
ReleaseMutex
CreateMutexA
WaitForSingleObject
CreateFileA
CloseHandle
Sleep
DefineDosDeviceA
DeleteFileA
MoveFileExA
GetStringTypeW
GetVersion
GetCommandLineA
LCMapStringW
LCMapStringA
GetStringTypeA
GetCurrentProcessId
ExitProcess
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetLastError
CreateSemaphoreA
OpenSemaphoreA
ReleaseSemaphore
GetStartupInfoA
IsBadWritePtr
GetEnvironmentStrings
GetEnvironmentStringsW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte

user32

DispatchMessageA
TranslateMessage
GetMessageA
PostMessageA
ShowWindow
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadStringA
SystemParametersInfoA
GetSystemMetrics
SetSystemCursor
SendMessageA
FindWindowA
mouse_event
PostQuitMessage
DefWindowProcA
DestroyWindow
RegisterWindowMessageA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

gdi32

DeleteDC
ExtEscape
CreateDCA
GetDeviceCaps

shell32

ShellExecuteA

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Beep95_S
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�La
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

90a5d83a1797da7e3b0f1ec7bf35231a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

shell32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 9KB

Beep95_S Size: 4KB - Virtual size: 4B

.rsrc Size: 8KB - Virtual size: 6KB

�La Size: 92KB - Virtual size: 92KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 9KB

Beep95_S
Size: 4KB - Virtual size: 4B

.rsrc
Size: 8KB - Virtual size: 6KB

�La
Size: 92KB - Virtual size: 92KB