3e944a1b32a35ef3d0e553449d9e434c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3e944a1b32a35ef3d0e553449d9e434c_JaffaCakes118
Size

125KB
MD5

3e944a1b32a35ef3d0e553449d9e434c
SHA1

cacbfc5cfbe158d1ed34010564c4741a0852edd9
SHA256

1e21e7b5cafc8c9622188fb331d592449f06e5af64c7329291bc031877c45251
SHA512

603a2eff0c14c63806244645ac84f6cf13bbaa1a19a3005d93285a751500e3ea41c5830512c2c2004ecb82ebb8902ac9bef9f056494d6786b92967f8b2338695
SSDEEP

3072:pc3nJAPIgIQPQjyhSXuoPBPGbD4dkvQ8st:Knzi3SXuox9q1st

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3e944a1b32a35ef3d0e553449d9e434c_JaffaCakes118

Files

3e944a1b32a35ef3d0e553449d9e434c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f17a7a7bfc3123412c45bda1442c90ce

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBkMode
DeleteDC
GetTextMetricsW
SelectPalette
CreatePen
GetTextExtentPoint32W
TextOutW
GetStockObject
GetTextExtentPointW
CreateCompatibleDC
LineTo
SetStretchBltMode
GetObjectA

kernel32

OutputDebugStringA
ExitProcess
GetFileType
GetComputerNameExW
CreateFileMappingW
ExpandEnvironmentStringsW
CreateMutexW
SetErrorMode
GetFileAttributesA
LoadLibraryW
ReleaseMutex
DisableThreadLibraryCalls
GetFileInformationByHandle
VirtualProtect
VirtualAlloc
VirtualProtect
AddConsoleAliasA
EnterCriticalSection
AddAtomW
GetLocaleInfoA
TerminateThread
QueryPerformanceCounter
VirtualFree
lstrcpyA
GetModuleHandleA
SetUnhandledExceptionFilter
ReadFile
GetProcAddress
LoadLibraryExW
SetFilePointer
WideCharToMultiByte
CreateThread
DeleteCriticalSection
GetCommandLineW
InitializeCriticalSection
SetFileTime

msvcrt

__CxxFrameHandler
exit
_ftol
__dllonexit
_c_exit
fprintf
memset
towupper
memcpy
toupper
memmove
_except_handler3
_initterm
malloc
_wcsicmp
swprintf
_vsnwprintf
__set_app_type
_wcmdln
__p__commode
_vsnprintf
__getmainargs
strncpy
strchr
free
isalpha
__wgetmainargs
_adjust_fdiv
__p__fmode

opengl32

glNormal3bv
glRectf
glStencilOp
glColor4dv
glRasterPos4dv
glStencilMask
glRasterPos4i

user32

GetDesktopWindow
SetFocus
GetSystemMenu
ClientToScreen
GetMessageW
MoveWindow
ValidateRect
SetWindowsHookExW
SetWindowTextA
CreateWindowExW
GetSysColor
RegisterClipboardFormatW
SendMessageW
IsRectEmpty
SetWindowLongW
ShowCursor
SetForegroundWindow
DefWindowProcA
IsDlgButtonChecked
DrawEdge
DefWindowProcW
MessageBeep
DrawIcon
WinHelpW
GetDlgItemInt
CreateWindowExA
CheckRadioButton
DispatchMessageW

Exports

Exports

SmqErcntjk
IrbxdgdVnbhcuSsdxEfl
VfwypdHfmakKtykUw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 70B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f17a7a7bfc3123412c45bda1442c90ce

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

msvcrt

opengl32

user32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 70B

.data Size: 116KB - Virtual size: 115KB

.rsrc Size: 3KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 70B

.data
Size: 116KB - Virtual size: 115KB

.rsrc
Size: 3KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB