JaffaCakes118_016053e3cc4e8ba71191fb8c170e2dc5

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_016053e3cc4e8ba71191fb8c170e2dc5
Size

157KB
MD5

016053e3cc4e8ba71191fb8c170e2dc5
SHA1

f5b320a237a0350539ea8877deccd6d49f306270
SHA256

a47472daf97cbc56f0ca92b8717db8d141e59737039432b9df1b13fe117367a5
SHA512

6b4cfad0fedaae9b8018c202c77469745f6c48d87493a156d6844de644e3d233d29914b02b8076ba8f166a54a4a8d70fdb05f743e799ab6f7da80e04eceedf3d
SSDEEP

3072:a62wffB0KEeAzYRXgYCkHWLz8sxB4BCh6VIZGIHHvG:a6Xf+1UKkWLz8sxeBChE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_016053e3cc4e8ba71191fb8c170e2dc5

Files

JaffaCakes118_016053e3cc4e8ba71191fb8c170e2dc5
.exe windows:4 windows x86 arch:x86

775e67a189f1a63d77c393880e8fbbb5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyExW
RegCloseKey

gdi32

DeleteDC
SetBkColor
ExtTextOutW
GetTextExtentPoint32W
DeleteObject
CreateFontIndirectA
CreateSolidBrush
BitBlt
ExtTextOutA
CreateBitmap
SelectObject
GetBitmapBits
GetObjectA
PatBlt
GetDeviceCaps
SetTextColor
CreateCompatibleDC

kernel32

LocalFree
GlobalAlloc
LocalAlloc
InterlockedDecrement
lstrlenA
lstrcatA
GlobalFree
lstrcpyA
GetModuleFileNameA
GetCurrentThreadId
GetCommandLineA
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
lstrlenW
MultiByteToWideChar
GetShortPathNameA
GetModuleHandleA
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
GetProcAddress
LoadLibraryA
lstrcmpA
GetACP
GetSystemDefaultLCID
GetLocaleInfoA
LockResource
GetSystemDefaultLangID
MulDiv
GetLastError
GetVersionExA
RtlUnwind
SetHandleCount
GetEnvironmentStringsW
GetStdHandle
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
HeapDestroy
ExitProcess
HeapCreate
GetStartupInfoA
HeapReAlloc
GetVersion
LCMapStringA
WriteFile
GetStringTypeA
GetStringTypeW
GetCPInfo
GetOEMCP
HeapFree
GetFileType
LCMapStringW
LoadLibraryW
HeapAlloc

user32

OffsetRect
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
SetWindowTextA
CharUpperA
CharLowerA
SetRect
wsprintfW
SetWindowTextW
IsWindowUnicode
GetClientRect
GetSysColor
RegisterClassExA
LoadCursorA
LoadIconA
IsZoomed
ClientToScreen
GetMessagePos
GetAsyncKeyState
UpdateWindow
SetFocus
FindWindowA
RegisterWindowMessageA
SetWindowPos
LoadStringA
MessageBoxA
InvalidateRect
EndPaint
GetForegroundWindow
BeginPaint
ReleaseCapture
SetCapture
GetCapture
GetIconInfo
InflateRect
GetDC
GetCursorPos
GetCursor
wsprintfA
CreateDialogParamA
CreateDialogParamW
SendMessageW
ScreenToClient
GetDlgItem
SetCursor
MoveWindow
SendDlgItemMessageA
EnableWindow
SendDlgItemMessageW
GetFocus
GetWindowDC
IsWindow
GetMessageA
IsDialogMessageA
DispatchMessageA
EnumWindows
GetWindow
IsWindowEnabled
SetTimer
PeekMessageA
ReleaseDC
GetClassNameA
EnumChildWindows
IsWindowVisible
GetWindowThreadProcessId
SendMessageA
KillTimer
SendMessageTimeoutA
SetWindowPlacement
ShowWindow
GetWindowPlacement
CreateWindowExA
DestroyWindow
RegisterClassA
PostQuitMessage
SetWindowLongA
GetWindowLongA
SetRectEmpty
PostMessageA
DefWindowProcA
GetParent
IsRectEmpty
IsIconic
GetActiveWindow
SetForegroundWindow
LoadBitmapA
TranslateMessage
CharNextA

ole32

CoTaskMemAlloc
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemRealloc
CoTaskMemFree
CoInitialize
CoUninitialize

oleaut32

VariantInit
VarUI4FromStr

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

775e67a189f1a63d77c393880e8fbbb5

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

user32

ole32

oleaut32

Sections

.text Size: 64KB - Virtual size: 60KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 12KB - Virtual size: 8KB

.pdata Size: 68KB - Virtual size: 68KB

.text
Size: 64KB - Virtual size: 60KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 12KB - Virtual size: 8KB

.pdata
Size: 68KB - Virtual size: 68KB