3d34462095e515996ab7b3adab3d9547_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d34462095e515996ab7b3adab3d9547_JaffaCakes118
Size

214KB
MD5

3d34462095e515996ab7b3adab3d9547
SHA1

8f8846a4498a4767c7506716068969e7c7dbf65b
SHA256

79b811900c1ff8580d469b065f951a8bf2e714ec5109a91798fa2551bc31d14b
SHA512

67c874e36585f1fe64935e0ec1ee30690e51137756cd299a1fd9d7a068808e3b2cefc7d647163aae83c57cf819ef4013574d2099d9e5bf732044f2926c54cda1
SSDEEP

6144:Kg7gBkkfl1k85+F8/RV5Tum8JWIqENhm+:ZgBfPB5M0tCJWIhNhm+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d34462095e515996ab7b3adab3d9547_JaffaCakes118

Files

3d34462095e515996ab7b3adab3d9547_JaffaCakes118
.exe windows:4 windows x86 arch:x86

15e762ceef40b89e0142f11f6fea196b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatW
FatalAppExitW
CreateMutexW
GetEnvironmentVariableA
LocalFree
CreateMailslotA
lstrcpyn
GetModuleHandleW
GetTempFileNameA
GetProcAddress
HeapCreate
GetEnvironmentStringsA
lstrcmpi
GetShortPathNameA
GetCurrentDirectoryW
GetNumberFormatW
GetStringTypeW
GetFullPathNameA
ReplaceFileA
CreateFileMappingA
GetDateFormatA
OpenSemaphoreW
SetCurrentDirectoryA
GetExitCodeThread
GetVersion
GetFileAttributesW
GetEnvironmentVariableW
IsValidLocale
GetTempPathA
SetPriorityClass
FindResourceA
SetThreadPriority
SetCalendarInfoA
MultiByteToWideChar
CreateEventW
lstrlenW
OpenMutexA
GetModuleHandleA
RaiseException
GetLongPathNameW
GetCurrentProcessId
SearchPathA
RemoveDirectoryW
ReadDirectoryChangesW

user32

RegisterWindowMessageW
DefWindowProcW
GetDCEx
EnumClipboardFormats
GetForegroundWindow
GetDlgItem
SetForegroundWindow
wvsprintfW
CreateDialogParamA
GetSysColor
CreateDesktopA
DefFrameProcW
LoadIconW
CopyIcon
CheckDlgButton
LoadMenuIndirectW
EmptyClipboard
ShowCursor
GetDlgItemTextW
IsChild
CreateWindowExW
EndMenu
GetActiveWindow
GetMenuItemInfoW
DialogBoxParamW
PostMessageW
LoadBitmapW
CallWindowProcA
GetClassNameA
GetMenuStringA

gdi32

SetEnhMetaFileBits
EnumFontFamiliesA
CreateFontIndirectExA
CreateRectRgn
EndFormPage
ExtEscape
CreateDIBPatternBrush
GetICMProfileW
EnumFontsW
CreateColorSpaceW
Polygon
PaintRgn
GetTextExtentPointA
GetCharABCWidthsFloatW

advapi32

RegCreateKeyA
RegDeleteValueA
RegCloseKey

ws2_32

WSACreateEvent
WSASetEvent

urlmon

CreateURLMonikerEx

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.eLt
Size: 1KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lEKliP
Size: 1KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DRK
Size: 3KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Y
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fa
Size: 1024B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.NSLiLy
Size: 1KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JZyRce
Size: 2KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.m
Size: 512B - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15e762ceef40b89e0142f11f6fea196b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ws2_32

urlmon

Sections

.text Size: 12KB - Virtual size: 12KB

.eLt Size: 1KB - Virtual size: 36KB

.lEKliP Size: 1KB - Virtual size: 28KB

.DRK Size: 3KB - Virtual size: 30KB

.Y Size: 512B - Virtual size: 4KB

.fa Size: 1024B - Virtual size: 32KB

.NSLiLy Size: 1KB - Virtual size: 21KB

.data Size: 14KB - Virtual size: 13KB

.JZyRce Size: 2KB - Virtual size: 47KB

.m Size: 512B - Virtual size: 175KB

.rsrc Size: 165KB - Virtual size: 165KB

.text
Size: 12KB - Virtual size: 12KB

.eLt
Size: 1KB - Virtual size: 36KB

.lEKliP
Size: 1KB - Virtual size: 28KB

.DRK
Size: 3KB - Virtual size: 30KB

.Y
Size: 512B - Virtual size: 4KB

.fa
Size: 1024B - Virtual size: 32KB

.NSLiLy
Size: 1KB - Virtual size: 21KB

.data
Size: 14KB - Virtual size: 13KB

.JZyRce
Size: 2KB - Virtual size: 47KB

.m
Size: 512B - Virtual size: 175KB

.rsrc
Size: 165KB - Virtual size: 165KB