3f460cc269c138500ccb59ccb1ab753b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3f460cc269c138500ccb59ccb1ab753b_JaffaCakes118
Size

126KB
MD5

3f460cc269c138500ccb59ccb1ab753b
SHA1

6512394ec04f6aa9acbe0e9b4f43bb8abeaaadd2
SHA256

c8259600151c25b04d9c7ca63f5d29cf7648bbe7d39b7ad601db896be6c7dec3
SHA512

f7be04e7189e28d4e34584856fec197a6a42f0adfc9cce4e8a3c4ac866afcca29f3c0ff6e03504b0647dfd7bc0246352424e649b9d3f11d78a0275310d14e5da
SSDEEP

3072:VH38vgstbZ+f0zh0Igd5g+rqR83BTfOmUW+89c6P9gzemF/:+R6M9u++owTGmVxUeo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f460cc269c138500ccb59ccb1ab753b_JaffaCakes118

Files

3f460cc269c138500ccb59ccb1ab753b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

17ae3a173a4790a6ab5778cd864d455c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LCMapStringA
VirtualProtect
FileTimeToSystemTime
FlushFileBuffers
LocalFileTimeToFileTime
GetCommandLineA
DisableThreadLibraryCalls
GetStartupInfoA
GetModuleHandleA
GetUserDefaultLCID
CreateFileMappingA
DeviceIoControl
CreateDirectoryA
GetTempFileNameA
SetStdHandle

user32

GetIconInfo
InflateRect
UpdateWindow
GetLastActivePopup
GetSysColorBrush
LoadCursorA
DestroyIcon
WindowFromPoint
EqualRect
ReleaseCapture
RegisterWindowMessageA

msvcrt

log10
_except_handler3
strchr
_getcwd
_close
atexit
__set_app_type
_adjust_fdiv
_XcptFilter
exit
__p__fmode
__getmainargs
__setusermatherr
strncmp
_initterm
_errno
_acmdln
__p__commode

shell32

SHGetSettings
SHGetSpecialFolderPathW
ShellExecuteA
ExtractIconExA
SHAppBarMessage
DragAcceptFiles
Shell_NotifyIconW

advapi32

RegOpenKeyExA
CryptReleaseContext
RegEnumKeyA
DeleteService
GetSecurityDescriptorDacl
InitiateSystemShutdownA
QueryServiceStatus

comctl32

CreateStatusWindowA
ImageList_Add
ImageList_Read
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_Remove
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_Draw

version

GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerLanguageNameA
GetFileVersionInfoW
VerQueryValueW

ole32

CoGetMalloc
PropVariantClear
StgOpenStorage
IsEqualGUID
CoInitializeEx

oleaut32

VariantClear
SafeArrayRedim
SysAllocStringByteLen
GetActiveObject
GetErrorInfo
SafeArrayCreate
SysStringLen

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17ae3a173a4790a6ab5778cd864d455c

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

advapi32

comctl32

version

ole32

oleaut32

Sections

.text Size: 92KB - Virtual size: 91KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 92KB - Virtual size: 91KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 17KB - Virtual size: 17KB