3efc65ba953d732c92997de91ef9c86f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3efc65ba953d732c92997de91ef9c86f_JaffaCakes118
Size

214KB
MD5

3efc65ba953d732c92997de91ef9c86f
SHA1

896775442058647ea0b6e60a6e69dd6907df5c99
SHA256

941ee311ff744cc9f06036423576d750142a66b97cff072437e2c24d0b084af8
SHA512

1e3eae79ff72a5c11fff371d0b2142be7739efddc4ac2572089e46686de374fbc1c83cd9df6e180c14188b4eb00a0332fd16a85ec6863495f6001c730baa4210
SSDEEP

3072:sGtTw3dFfY1CHr+AgJqwH4fuZmEDdkzWQkeaCzqLrJdv5ld9ElH2arvaB58Z30gH:s6c3dWY+Bcw27cjCzqPJTBSH2arvI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3efc65ba953d732c92997de91ef9c86f_JaffaCakes118

Files

3efc65ba953d732c92997de91ef9c86f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e70a80be724ac4c290b556da1ae0f45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendMessageA
DrawMenuBar
SetActiveWindow
RemovePropA
GetClientRect
GetWindowDC
GetClassLongA
RegisterClassA
PostMessageA
SetParent
GetClassNameA
ScrollWindow
GetWindow
SetForegroundWindow
IsCharLowerA
UpdateWindow
ScreenToClient
SetWindowLongA
DrawFrameControl
PtInRect
LoadStringA
DefFrameProcA
GetKeyboardLayout
OpenClipboard
IsIconic
GetDC
IsDlgButtonChecked
SetCursor
GetDesktopWindow
PeekMessageW
IsDialogMessageA
GetMenuStringA
MapVirtualKeyA
RedrawWindow
BeginPaint
GetSystemMenu
ActivateKeyboardLayout
DefWindowProcA
GetPropA
RemoveMenu
IntersectRect
OemToCharA
SetWindowLongW
CreatePopupMenu
SetPropA
EnableMenuItem
InsertMenuA
GetClipboardData
GetMenuItemCount
RegisterWindowMessageA
FrameRect
EnumChildWindows
IsMenu
MessageBoxA
DrawIconEx
ShowWindow
GetMenuState
GetKeyboardState
ReleaseCapture
InsertMenuItemA
OpenIcon
EndDialog
DeleteMenu
MoveWindow
SetScrollRange
EnableWindow
GetLastActivePopup
DestroyMenu
CharNextA
FindWindowA
PostQuitMessage
EnableScrollBar

kernel32

GetModuleHandleA
VirtualAllocEx
CloseHandle
CreateEventA
LocalAlloc
ExitProcess
GetCommandLineA
CreateFileA
CompareStringA
GetACP

shell32

SHGetSpecialFolderLocation
SHGetFolderPathA
Shell_NotifyIconW

gdi32

GetPaletteEntries
GetObjectA
GetDIBits

Exports

Exports

MmoT1iPty@4
rX4fTSjHPDq@20
_w7IDvi@4
_BZrJ2a
_y10k2v@4
_itHIfY@8
uoTXu7sVtc
F63mnmkcnymzA@16
k9Uokdgz@8
_5hgna6WvwiX@16
bYWQt6@12
_AEbNvLQ
_PKNcW1u8oPU
GZ854@8
Vzo5Vi2
_6AFxYY
_KSQ1XGLCWZ_Uw1@8

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e70a80be724ac4c290b556da1ae0f45

Headers

File Characteristics

Imports

user32

kernel32

shell32

gdi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 193KB - Virtual size: 192KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 193KB - Virtual size: 192KB

.rsrc
Size: 2KB - Virtual size: 1KB