3d88247d3b9051ce34bda46e860de9a3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d88247d3b9051ce34bda46e860de9a3_JaffaCakes118
Size

175KB
MD5

3d88247d3b9051ce34bda46e860de9a3
SHA1

ca987daeb3a2396a03b1844dd4c0924cfd913947
SHA256

c4fc2330edaf5567d56d11d2ececfdad2b7c076be4c6cefae1b63d974cf122a6
SHA512

b0a9e3473b136574a0cc6814db3955a7dd528018ddb0af21f3ebe30d1c8d956edfb3aecd9696df56c522135144c0c6fa3945cf3fd5d1b769a49038ea54300c55
SSDEEP

3072:X9qSyoZOkYKJ0Bn9BjF7l5lrYYWm8+pzKgcur1gLFZ:pLskYKaBjP/dWm8+pOgcur1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d88247d3b9051ce34bda46e860de9a3_JaffaCakes118

Files

3d88247d3b9051ce34bda46e860de9a3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ab479646cc907486597e5f0d312d2ff8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Write
ImageList_DrawEx
ImageList_Destroy

shlwapi

SHDeleteValueA
PathFileExistsA
PathIsDirectoryA
PathGetCharTypeA
SHDeleteKeyA

gdi32

CreateDIBSection
GetCurrentPositionEx
SelectPalette
CreateCompatibleBitmap
CreatePalette
RestoreDC
SetPixel
CopyEnhMetaFileA
CreateBitmap

comdlg32

GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA

oleaut32

SysStringLen
RegisterTypeLib
OleLoadPicture

advapi32

RegOpenKeyExA
GetUserNameA

ole32

CoUninitialize
StringFromIID
CoFreeUnusedLibraries
CoTaskMemFree
CoUnmarshalInterface
CoRegisterClassObject
CoCreateGuid

shell32

SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
SHGetDesktopFolder

msvcrt

memcmp
memmove
log10

user32

SetWindowLongA
SystemParametersInfoA
ReleaseCapture
DispatchMessageW
CharLowerA
OffsetRect
DefMDIChildProcA
GetDCEx
CharLowerBuffA
BeginPaint
CheckMenuItem
CreatePopupMenu
DestroyIcon
GetCursor
SetWindowPos
SetClipboardData
RemoveMenu
GetMenuState
SetMenu
GetKeyNameTextA
MessageBeep
GetActiveWindow
DrawIcon
SetScrollInfo
PeekMessageA
MoveWindow
GetMenuStringA
RedrawWindow
wsprintfA
CharToOemA
IsWindowEnabled
GetClassNameA
MapVirtualKeyA
ScreenToClient
DestroyWindow
CharNextW
GetSysColor
TranslateMDISysAccel
GetForegroundWindow
GetCursorPos
EmptyClipboard
RemovePropA
TrackPopupMenu
IsWindowVisible
GetIconInfo
DispatchMessageA
InsertMenuItemA
LoadBitmapA
SetMenuItemInfoA
ReleaseDC
MsgWaitForMultipleObjects
EnumThreadWindows
SetRect
PtInRect
GetMenuItemID
GetScrollInfo
RegisterWindowMessageA
UnhookWindowsHookEx
SendMessageA
OemToCharA
IsChild
UpdateWindow
CreateWindowExA
GetWindow
DrawEdge
DrawMenuBar
CharNextA
DrawTextA
GetDesktopWindow
GetKeyState
InvalidateRect
SetCursor
GetClipboardData
LoadStringA
PostQuitMessage
RegisterClassA
GetKeyboardState
IsRectEmpty
DefWindowProcA
IsDialogMessageW
GetClientRect
KillTimer
GetWindowRect
EnableWindow
SetActiveWindow
IsIconic
MessageBoxA
InsertMenuA
GetMenuItemInfoA
GetSystemMetrics
GetScrollRange
FindWindowA
FrameRect
GetClassLongA
DestroyMenu
PostMessageA
SetWindowPlacement
GetKeyboardLayoutList
CharUpperBuffA
AdjustWindowRectEx
GetDC
UnregisterClassA
CallWindowProcA
EnableMenuItem
ShowScrollBar
SetPropA
GetLastActivePopup
TranslateMessage
GetParent
RegisterClipboardFormatA
GetWindowTextA
WaitMessage
DrawAnimatedRects
GetSystemMenu
GetScrollPos
GetCapture
IsZoomed

kernel32

VirtualAlloc
ExitThread
WaitForSingleObject
LoadLibraryExA
FreeLibrary
GetProcAddress
GetCommandLineA
GetModuleHandleA
ExitProcess
GetLocalTime
GetSystemDefaultLangID
LocalFree

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

CODE
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 139KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab479646cc907486597e5f0d312d2ff8

Headers

File Characteristics

Imports

comctl32

shlwapi

gdi32

comdlg32

oleaut32

advapi32

ole32

shell32

msvcrt

user32

kernel32

version

Sections

CODE Size: 31KB - Virtual size: 30KB

.edata Size: 512B - Virtual size: 444B

.idata Size: 139KB - Virtual size: 199KB

.bss Size: 1KB - Virtual size: 1KB

DATA Size: 1KB - Virtual size: 1KB

CODE
Size: 31KB - Virtual size: 30KB

.edata
Size: 512B - Virtual size: 444B

.idata
Size: 139KB - Virtual size: 199KB

.bss
Size: 1KB - Virtual size: 1KB

DATA
Size: 1KB - Virtual size: 1KB