780117861242082a5aa07ffadb2d4874_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

780117861242082a5aa07ffadb2d4874_JaffaCakes118
Size

248KB
MD5

780117861242082a5aa07ffadb2d4874
SHA1

8acc52e004179e61afd1f3a3ff77c3810ef6a423
SHA256

053b9bb21ffca43e790efd72e6de5e7158aac7083ff493ac33668d5915da9164
SHA512

f9bd8383e39f2acdaeaf3ff837db8b50b998d43c632f98c3b17b6f781ff9acf3e0dd995e86fd7497ec1431be3b2302f24d67031717c03dfabaac56e2c566aa44
SSDEEP

6144:ayDfVXVc7cl5ZFdEH6IDvl5UaErsr53kTmrY:aOXVbTEH6IDDEAKTms

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
780117861242082a5aa07ffadb2d4874_JaffaCakes118

Files

780117861242082a5aa07ffadb2d4874_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c3e5b50495b921caf28df49a5bf7e850

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
CreateMutexW
WaitForSingleObject
ReleaseMutex
CloseHandle
GetModuleHandleW
FreeLibrary
FindFirstFileW
FindNextFileW
FindClose
CreateThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
OpenMutexW
OpenFileMappingW
VirtualQuery
MapViewOfFile
UnmapViewOfFile
ResetEvent
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateEventW
OpenEventW
WaitForMultipleObjects
LocalAlloc
LocalLock
LocalUnlock
LocalFree
GetLocalTime
SetLastError
CreateFileW
WriteFile
SetFilePointer
GetSystemTimeAsFileTime
lstrlenW
WinExec
lstrcpyW
lstrcatW
FileTimeToSystemTime
OutputDebugStringW
GetStartupInfoW
VirtualAllocEx

user32

PostMessageW
IsWindow
InflateRect
LoadImageW
RegisterWindowMessageW
GetKeyState
MessageBeep
OffsetRect
GetFocus
FrameRect
SetRect
IntersectRect
DrawFocusRect
GetWindowTextW
DestroyWindow
SetFocus
CreateWindowExW
GetSysColorBrush
CallWindowProcW
SetWindowRgn
GetClassInfoW
DefWindowProcW
LoadIconW
GetWindowPlacement
SetWindowPos
CopyRect
PeekMessageW
MsgWaitForMultipleObjectsEx
GetPropW
GetDlgItem
GetWindowDC
SetLayeredWindowAttributes
MapDialogRect
GetCursor
GetIconInfo
GetDC
ReleaseDC
FillRect
LoadCursorW
GetSysColor
GetCursorPos
PtInRect
SetCursor
SetWindowLongW
DrawTextW
RedrawWindow
ScreenToClient
GetDesktopWindow
GetWindowLongW
GetParent
KillTimer
SetTimer
UpdateWindow
DestroyIcon
GetSystemMetrics
InvalidateRect
GetClientRect
GetWindowRect
GetWindow
EnableWindow
SendMessageW

gdi32

CreateCompatibleDC
SelectObject
GetPixel
ExcludeClipRect
CreateSolidBrush
GetTextMetricsW
GetStockObject
CreateFontIndirectW
GetObjectW
SetTextJustification
GetTextExtentPoint32W
DeleteDC
BitBlt
Polygon
CreatePen
CreateCompatibleBitmap
SetBkMode
SetTextColor
SetBkColor
MoveToEx
LineTo
GetTextFaceW
CreateRectRgn
CombineRgn
FrameRgn
FillRgn
CreateRoundRectRgn
CreatePolygonRgn
DeleteObject

msimg32

GradientFill

advapi32

GetUserNameW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
ConvertSidToStringSidW
LookupAccountNameW
RegCloseKey

shell32

SHGetFolderPathW
ShellExecuteW

comctl32

ImageList_GetIconSize
_TrackMouseEvent
ImageList_DrawEx

shlwapi

PathFindFileNameW

ole32

CoInitializeEx
CoCreateInstance
CoUninitialize

oleaut32

SystemTimeToVariantTime
SysFreeString
SysAllocString
VariantTimeToSystemTime

esent

JetCreateInstance

mprdim

ServiceMain

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.MC
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HetX
Size: 512B - Virtual size: 505B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MNu
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.KhqeZA
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ZrVw
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 212KB - Virtual size: 450KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.A
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3e5b50495b921caf28df49a5bf7e850

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

esent

mprdim

Sections

.text Size: 18KB - Virtual size: 18KB

.MC Size: 2KB - Virtual size: 2KB

.HetX Size: 512B - Virtual size: 505B

.MNu Size: 1KB - Virtual size: 2KB

.rdata Size: 4KB - Virtual size: 4KB

.KhqeZA Size: 1024B - Virtual size: 1KB

.ZrVw Size: 2KB - Virtual size: 1KB

.data Size: 212KB - Virtual size: 450KB

.A Size: 2KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.MC
Size: 2KB - Virtual size: 2KB

.HetX
Size: 512B - Virtual size: 505B

.MNu
Size: 1KB - Virtual size: 2KB

.rdata
Size: 4KB - Virtual size: 4KB

.KhqeZA
Size: 1024B - Virtual size: 1KB

.ZrVw
Size: 2KB - Virtual size: 1KB

.data
Size: 212KB - Virtual size: 450KB

.A
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB