JaffaCakes118_3bab17bae73d51937d86192224353760

Resubmissions

14-01-2025 10:44

250114-ms248swlby 10

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_3bab17bae73d51937d86192224353760
Size

181KB
MD5

3bab17bae73d51937d86192224353760
SHA1

783f30d5cb0de250e2e890c8d724f3a36a7381a6
SHA256

abf6cc22659591dff1a2f28165f18823ccd32254b77326915a50cc8a4386087a
SHA512

8b03ebfff64eff2cc4b7133ed749107b5458b3c8b7236ed7657550d2944fa7ea9985e026b459c9274b5ab093487cb231cdf9ff07696fb8bb04335cbb56626bf4
SSDEEP

3072:BWD4RpcT27bdga2te1cfA52U4er2NXCY2FInmw0ZRn7zUOGbEeoRA7uVNGc:0MXPeDE/qeramGmrjnUOGtO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_3bab17bae73d51937d86192224353760

Files

JaffaCakes118_3bab17bae73d51937d86192224353760
.exe windows:4 windows x86 arch:x86

2ad6d9e47bc13ecfbc89601922bbba2a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

gdi32

DeleteDC
DeleteObject
CreateDIBitmap
CreateDIBSection
RealizePalette
GetObjectA
SelectObject
CreateSolidBrush
CreateFontA
GetStockObject
GetDeviceCaps
StretchDIBits
BitBlt
SelectPalette
ExtEscape
GetDIBits
CreateCompatibleBitmap
SetStretchBltMode
CreateCompatibleDC
SetBkMode

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

ole32

CLSIDFromProgID
GetRunningObjectTable
CoTaskMemAlloc
CoTaskMemRealloc
CreateItemMoniker
StgCreateDocfile
CoCreateInstance
CreateStreamOnHGlobal
CoUninitialize
OleUninitialize
CoGetClassObject
OleInitialize
CoInitializeSecurity
StringFromGUID2
CoTaskMemFree
BindMoniker
CoInitialize
StgOpenStorage
StgIsStorageFile
CreateBindCtx
OleLockRunning
CoSetProxyBlanket
CLSIDFromString

advapi32

CryptEncrypt
RegOpenKeyExA
RegSetValueExA
CryptDestroyKey
RegQueryInfoKeyA
CryptAcquireContextA
RegEnumValueA
CryptImportKey
CryptGetHashParam
RegEnumKeyExA
CryptCreateHash
RegCloseKey
RegQueryValueExA
RegCreateKeyExA
CryptDestroyHash
CryptReleaseContext
CryptHashData
RegDeleteValueA
RegDeleteKeyA

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

user32

GetClassInfoExA
EqualRect
ReleaseDC
SetRect
GetActiveWindow
InvalidateRgn
RegisterWindowMessageA
InvalidateRect
GetWindowTextA
DrawTextA
GetWindowTextLengthA
RedrawWindow
FillRect
CreateDialogParamA
GetSysColor
wsprintfA
CharNextA
PeekMessageA
GetFocus
GetClientRect
GetQueueStatus
DefWindowProcA
KillTimer
SendMessageTimeoutA
ReleaseCapture
UnregisterClassA
SendMessageA
IsChild
GetWindowLongA
GetDlgItem
IsWindow
GetDesktopWindow
PostThreadMessageA
SetParent
CreateWindowExA
ShowWindow
BeginPaint
CallWindowProcA
EndPaint
GetWindow
MsgWaitForMultipleObjects
GetDC
GetWindowRect
wvsprintfA
DestroyWindow
SetFocus
SetCapture
PostMessageA
SetWindowTextA
SetTimer
CopyRect
FindWindowA
GetParent
MoveWindow
LoadCursorA
DispatchMessageA
EnumDisplayDevicesA
SetWindowLongA
DestroyAcceleratorTable
CreateAcceleratorTableA
RegisterClassExA
GetClassNameA
SendNotifyMessageA
SetWindowPos

kernel32

GetLongPathNameW
GlobalFree
ReadFile
GlobalSize
GlobalAlloc
GetProcessHandleCount
LocalAlloc
CreateFileA
UnmapViewOfFile
WideCharToMultiByte
Sleep
EnumResourceTypesA
LocalFree
DisableThreadLibraryCalls
SetFilePointer
CreateFileW
GetFileAttributesA
GetFileSize
CreateFileMappingA
MapViewOfFile
WriteFile
GetTickCount
CloseHandle

shlwapi

PathFileExistsW
PathCombineW

Sections

.text
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

2ad6d9e47bc13ecfbc89601922bbba2a

Headers

File Characteristics

Imports

setupapi

gdi32

wininet

ole32

advapi32

shell32

user32

kernel32

shlwapi

Sections

.text Size: 105KB - Virtual size: 104KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 70KB - Virtual size: 69KB

.tls Size: 1024B - Virtual size: 240KB

.text
Size: 105KB - Virtual size: 104KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 70KB - Virtual size: 69KB

.tls
Size: 1024B - Virtual size: 240KB