JaffaCakes118_6007bf9244bd9accb3f1a75100b44580

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_6007bf9244bd9accb3f1a75100b44580
Size

212KB
MD5

6007bf9244bd9accb3f1a75100b44580
SHA1

14859626db40cb11bc0fe9d773ff0c697c819589
SHA256

feb2e9203c50fe9d51b46e3b146c9e0000ac5f11d67b57ef1835b86f2807d49a
SHA512

eaae3406f8a10d75d4446def713b4c6a3db3023597b02b4dc78260ca07d71a467ad3cc70a6fa6ff6c0cf7fbf1e329233bda0fc79f7e9cf405e4414d9c5892b30
SSDEEP

3072:xuE5COzDVjEPR6KEZ86nFAmi7gCoPiDqUlGyGRc21IAGCH:UE51JjEP4ZnFAmi7Pq4GRG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6007bf9244bd9accb3f1a75100b44580

Files

JaffaCakes118_6007bf9244bd9accb3f1a75100b44580
.exe windows:4 windows x86 arch:x86

50cd8e580679d7f5c5947448b48eab42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutOpen
waveOutPrepareHeader
waveOutClose
waveOutUnprepareHeader
waveInAddBuffer
mixerGetLineInfoA
waveInClose
waveInGetErrorTextA
waveInReset
waveInPrepareHeader
waveInStart
mixerGetLineControlsA
mixerGetControlDetailsA
waveOutWrite
waveInOpen
mixerGetDevCapsA
mixerOpen
mixerSetControlDetails
mixerClose

kernel32

RtlUnwind
ExitProcess
TerminateProcess
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
RaiseException
HeapReAlloc
HeapSize
GetACP
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
GetOEMCP
SetErrorMode
GetProcessVersion
GetCPInfo
SizeofResource
WritePrivateProfileStringA
TlsGetValue
GlobalFlags
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
lstrcpynA
LocalFree
LocalAlloc
SetLastError
GetLastError
MulDiv
GlobalGetAtomNameA
GetVersion
lstrcatA
lstrcpyA
GlobalAddAtomA
GlobalFindAtomA
GlobalFree
GetModuleHandleA
GlobalUnlock
LoadResource
LockResource
GetProfileStringA
FindResourceA
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GlobalLock
GetModuleFileNameA
lstrcmpA
GlobalAlloc
GlobalDeleteAtom
GetCurrentThreadId
lstrcmpiA
GetCurrentThread
CreateThread
SetEvent
CloseHandle
Sleep
SetThreadPriority
WaitForMultipleObjects
EnterCriticalSection
GetTickCount
OutputDebugStringA
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetProcAddress
WaitForSingleObject
CreateEventA
SetHandleCount
GetStdHandle
FreeLibrary
LoadLibraryA

user32

ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
IsDialogMessageA
SetWindowTextA
ShowWindow
ClientToScreen
GetTopWindow
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
BeginPaint
GetClassNameA
PtInRect
GetSysColorBrush
InflateRect
DestroyMenu
InvalidateRect
RegisterClassA
GetMenu
GetMenuItemCount
GetWindowDC
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
GetCapture
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
GetDC
ReleaseDC
UnhookWindowsHookEx
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
LoadStringA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SetCursor
PostQuitMessage
PostMessageA
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
MessageBoxA
wsprintfA
WinHelpA
GetSubMenu
GetClassInfoA
GetMenuItemID
EndDialog
LoadBitmapA
GetMenuCheckMarkDimensions
IntersectRect
CharNextA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
IsWindowUnicode
DefDlgProcA

gdi32

GetTextExtentPointA
CreateCompatibleDC
CreateBitmap
PatBlt
DeleteObject
GetClipBox
SetBkColor
GetObjectA
SetTextColor
SaveDC
DeleteDC
SelectObject
GetStockObject
RestoreDC
SetBkMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
IntersectClipRect
BitBlt
CreateDIBitmap
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA

comctl32

ord17

Exports

Exports

CreateInterface

Sections

.text
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

yq�D�u,
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

50cd8e580679d7f5c5947448b48eab42

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 93KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 52KB - Virtual size: 48KB

yq�D�u, Size: 20KB - Virtual size: 20KB

.text
Size: 96KB - Virtual size: 93KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 52KB - Virtual size: 48KB

yq�D�u,
Size: 20KB - Virtual size: 20KB