3d342bcab0307771c0061ca6540de237_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d342bcab0307771c0061ca6540de237_JaffaCakes118
Size

450KB
MD5

3d342bcab0307771c0061ca6540de237
SHA1

204a355160e71404d04eeb6107037e661611c4eb
SHA256

69a9d9a4d11d192d6a5d47d2d86422a3efccfd0fbd5d86eb94f4ac9cfaf61a40
SHA512

ddc302cfb9414b6a29099127fcc2eadb27d79dd68ce95462545042051c7f3d36c00c651684de41f0c61f4a93e3f112e5855280b36260b1f9c57bf2d6fe46d1a3
SSDEEP

12288:tAM0Vz35gNID30Wns6NS8hPwpmeFNblCtZAkTsQM:pNCJChplCtZAkTsQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d342bcab0307771c0061ca6540de237_JaffaCakes118

Files

3d342bcab0307771c0061ca6540de237_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1bb087dec25f7ae1c8d64e2fc00e0f42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ExtFloodFill
GetBoundsRect
DeleteColorSpace
EnumFontFamiliesW
GdiSetBatchLimit
CancelDC
CreateScalableFontResourceA
GdiGetBatchLimit
CombineRgn
GetMiterLimit
SetGraphicsMode
ArcTo
GetDIBColorTable
SetTextColor
MaskBlt
GetCurrentObject
SetEnhMetaFileBits

comdlg32

LoadAlterBitmap

user32

RegisterClassA
EnumDesktopWindows
SetMenuItemInfoA
OemToCharBuffA
GetUserObjectInformationA
GetQueueStatus
GetNextDlgTabItem
SetWindowPlacement
MapDialogRect
GetActiveWindow
SetParent

shell32

DragQueryFile
DragAcceptFiles
RealShellExecuteExA
SHGetFileInfo
SheSetCurDrive
ShellExecuteEx
DoEnvironmentSubstA
ExtractIconW
SHGetSettings
SHInvokePrinterCommandA
ExtractAssociatedIconExW
ExtractIconA
DragFinish
SHGetDesktopFolder
SheGetDirA
SHGetDiskFreeSpaceA
CommandLineToArgvW

kernel32

VirtualQuery
ExitProcess
GetTempPathW
InterlockedExchange
GetThreadLocale
GetStartupInfoW
GetProcessShutdownParameters
DeleteCriticalSection
SetThreadPriority
SetLastError
QueryPerformanceCounter
GetFileType
GetCommandLineA
TlsFree
ConvertDefaultLocale
SetEvent
SetFileAttributesA
GetThreadPriority
FreeEnvironmentStringsA
CreateMutexW
GetStringTypeA
GetStringTypeW
IsBadWritePtr
SetEndOfFile
LeaveCriticalSection
HeapFree
HeapCreate
OutputDebugStringW
GetCPInfo
GetSystemDirectoryA
GetLastError
GetCurrentProcessId
RtlUnwind
HeapAlloc
GetSystemTimeAsFileTime
SetConsoleCursorInfo
EnumResourceTypesW
LoadLibraryA
GetEnvironmentStrings
FreeEnvironmentStringsW
UnhandledExceptionFilter
TlsAlloc
GetOEMCP
WriteFile
GetUserDefaultLCID
lstrcpynA
GetCurrentThread
GetProfileSectionW
CreateFileW
VirtualFree
GetEnvironmentStringsW
GetModuleFileNameA
GetProfileIntA
GetCurrentThreadId
TlsGetValue
EnterCriticalSection
LCMapStringA
GetProcAddress
GetStartupInfoA
WideCharToMultiByte
InitializeCriticalSection
HeapReAlloc
LCMapStringW
TlsSetValue
GetStdHandle
GetTickCount
GetACP
HeapDestroy
VirtualAlloc
TerminateProcess
CreateDirectoryExA
SetHandleCount
GetModuleHandleA
GetVersion
GetWindowsDirectoryW
GetCurrentProcess
MultiByteToWideChar
GetCurrentDirectoryW

wininet

FindNextUrlCacheGroup
InternetCrackUrlW
IsHostInProxyBypassList
InternetConfirmZoneCrossingW
RetrieveUrlCacheEntryFileA
InternetCheckConnectionA
InternetQueryOptionW
FreeUrlCacheSpaceA
LoadUrlCacheContent
InternetGetCertByURL
FindNextUrlCacheContainerW
InternetGoOnline

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 305KB - Virtual size: 305KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1bb087dec25f7ae1c8d64e2fc00e0f42

Headers

File Characteristics

Imports

gdi32

comdlg32

user32

shell32

kernel32

wininet

Sections

.text Size: 133KB - Virtual size: 133KB

.data Size: 305KB - Virtual size: 305KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 133KB - Virtual size: 133KB

.data
Size: 305KB - Virtual size: 305KB

.rsrc
Size: 10KB - Virtual size: 9KB