3cf6d171e2940a8687183038bb8e8217_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3cf6d171e2940a8687183038bb8e8217_JaffaCakes118
Size

148KB
MD5

3cf6d171e2940a8687183038bb8e8217
SHA1

bfb3fd90cade7ab0480707ed28b082321dcf870c
SHA256

cdef6dda82283e9bc9b495d4b0debbd4a87ee0b74d199d8f0b569a669a0088d1
SHA512

6f9463a3743a558cc5b9caab8cddd8e7a9ca8d980c70afd440f2d9792b537f16c1b4aae493a3219a8548e3e7c98099b5a94a3476fe9788dc45ee1d6dc0250106
SSDEEP

3072:FKB77AZx/m9XbNPJDexHMYPrZSZwsT1JU6Y06am9y1:Fk8x/m5dJ8HRPV76S6z6jc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3cf6d171e2940a8687183038bb8e8217_JaffaCakes118

Files

3cf6d171e2940a8687183038bb8e8217_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1955b08cfb855a0c86a4069c6cc259ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerFindFileA
VerInstallFileA

kernel32

GetModuleHandleW
GetProcAddress
GetOEMCP
ExitProcess
IsBadReadPtr
GetModuleHandleA
GetVersionExA
LoadLibraryA
GetCommandLineA
VirtualAlloc
ExitThread
LoadLibraryExA

user32

GetCapture
DeleteMenu
GetWindowDC
IsWindowEnabled
GetForegroundWindow
GetMenuItemInfoA
CallWindowProcA
IsRectEmpty
DrawIconEx
EnableWindow
GetWindowThreadProcessId
GetClassLongA
CharNextA
DrawFrameControl
CharLowerA
GetScrollPos
CharUpperBuffA
FrameRect
OpenClipboard
ShowWindow
EndPaint
DrawTextA
ActivateKeyboardLayout
ShowScrollBar
GetWindowLongW
CharNextW
SetPropA
SetWindowPos
ScreenToClient
GetTopWindow
GetSubMenu
OffsetRect
TranslateMessage
CreateMenu
SetScrollInfo
GetDCEx
GetDesktopWindow
GetMenu
BeginPaint
AdjustWindowRectEx
GetFocus
GetKeyboardType
OemToCharA
PostQuitMessage
DispatchMessageW
GetSysColor
MessageBoxA
WindowFromPoint
EnumThreadWindows
SetScrollPos
SetClassLongA
MapVirtualKeyA
TrackPopupMenu
CharLowerBuffA
GetIconInfo
GetSystemMenu
InsertMenuItemA
RemoveMenu
DefFrameProcA
PeekMessageW
LoadIconA
DefWindowProcA
SetForegroundWindow
SendMessageW
GetPropA
InsertMenuA
GetKeyNameTextA
GetParent
GetMenuItemID
MsgWaitForMultipleObjects
DrawMenuBar
InflateRect
IsDialogMessageA
EnumWindows
CreateWindowExA
DrawIcon
RemovePropA
CreateIcon
IsZoomed
CheckMenuItem
UnhookWindowsHookEx
LoadKeyboardLayoutA
CharToOemA
SetTimer
IsWindow
GetClassNameA
GetWindowLongA
PeekMessageA
GetKeyState
ReleaseCapture
EnumChildWindows
IsDialogMessageW
GetKeyboardLayoutNameA
SetClipboardData
SetRect
FillRect
GetScrollRange
DestroyIcon
EnableScrollBar
GetWindowTextA
DefMDIChildProcA
LoadBitmapA
FindWindowA
GetScrollInfo
CreatePopupMenu
LoadCursorA
GetMenuState
RegisterClipboardFormatA
DestroyWindow
PostMessageA
CallNextHookEx
GetSysColorBrush
SetCursor
MapWindowPoints
RedrawWindow
UnregisterClassA
DestroyMenu
SendMessageA
DestroyCursor
MoveWindow
GetWindowRect
SetFocus
LoadStringA
GetDC

Sections

CODE
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 734B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ddata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1955b08cfb855a0c86a4069c6cc259ea

Headers

File Characteristics

Imports

version

kernel32

user32

Sections

CODE Size: 104KB - Virtual size: 103KB

.rdata Size: 4KB - Virtual size: 734B

.data Size: 12KB - Virtual size: 8KB

.bss Size: 4KB - Virtual size: 1KB

.ddata Size: 8KB - Virtual size: 7KB

.rsrc Size: 12KB - Virtual size: 8KB

CODE
Size: 104KB - Virtual size: 103KB

.rdata
Size: 4KB - Virtual size: 734B

.data
Size: 12KB - Virtual size: 8KB

.bss
Size: 4KB - Virtual size: 1KB

.ddata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 12KB - Virtual size: 8KB