JaffaCakes118_67f96e7640c1f47d6c1ce805547587b0

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_67f96e7640c1f47d6c1ce805547587b0
Size

320KB
MD5

67f96e7640c1f47d6c1ce805547587b0
SHA1

e9b8e1f666e16d3cc72b4efac0336d4aab5361a4
SHA256

009e6257f209132d53bb49c50b50f9ad426ec5f9b4ea85b844cde64947f1bc90
SHA512

d6381d1227bcd0b491191a3ff96a2116b43b637503b6553138098d3c94a24916ef4b4093f041f8242db6f53b866898327edad77c2947024e662f3176b8417513
SSDEEP

6144:wHf+RNtHyZ9+wrQirBGYDZFFCj3oj2iuiTSbKj23PvFCJeGfCQT:4GRHM3rQitGiTPCEoKj23UZt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_67f96e7640c1f47d6c1ce805547587b0

Files

JaffaCakes118_67f96e7640c1f47d6c1ce805547587b0
.exe windows:4 windows x86 arch:x86

974d0871cd1868371477001f6ef58d84

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

GetPrivateProfileStringA
GetProcAddress
GlobalLock
GlobalAlloc
GetWindowsDirectoryA
WritePrivateProfileStringA
Sleep
lstrcmpiA
GetTempFileNameA
GetLastError
GetTickCount
lstrcpynA
GetSystemDirectoryA
MulDiv
GetPrivateProfileSectionNamesA
lstrcmpA
GetTempPathA
FindFirstFileA
FindClose
FindNextFileA
GetShortPathNameA
DeleteFileA
_lopen
GlobalFree
SetFileAttributesA
_hread
_hwrite
_lcreat
GetFileAttributesA
MoveFileExA
lstrcatA
WriteProfileStringA
OpenFile
_lread
_llseek
_lclose
LoadLibraryA
FindResourceA
LoadResource
LockResource
lstrcpyA
FreeResource
FreeLibrary
IsBadCodePtr
FlushFileBuffers
GlobalHandle
GlobalUnlock
lstrlenA
RemoveDirectoryA
GetVersionExA
GetStringTypeA
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
WriteFile
GetStringTypeW
SetStdHandle
UnhandledExceptionFilter
HeapSize
IsBadReadPtr
HeapReAlloc
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
HeapAlloc
HeapFree
GetOEMCP
GetACP
GetCPInfo
SetEndOfFile
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
MoveFileA
RtlUnwind
CreateFileA
GetFileType
ReadFile
CloseHandle
SetFilePointer
VirtualAlloc
IsBadWritePtr

user32

MessageBoxA
SetFocus
GetDlgItemTextA
GetSysColor
GetWindowRect
GetDesktopWindow
IsWindowVisible
GetParent
EndPaint
BeginPaint
SetWindowTextA
GetWindow
SendMessageA
UpdateWindow
ShowWindow
CreateDialogParamA
MoveWindow
DestroyWindow
DispatchMessageA
TranslateMessage
PeekMessageA
OffsetRect
ScreenToClient
InvalidateRect
DdeInitializeA
DdeUninitialize
DdeAccessData
DdeUnaccessData
DdeFreeDataHandle
DdeCreateStringHandleA
DdeConnect
DdeClientTransaction
DdeGetLastError
DdeDisconnect
FindWindowA
LoadStringA
EndDialog
SetDlgItemTextA
GetDC
ReleaseDC
FillRect
GetDlgItem
wsprintfA
CharUpperA
PostMessageA
DialogBoxParamA
DdeFreeStringHandle

gdi32

RemoveFontResourceA
GetObjectA
CreateSolidBrush
CreateFontIndirectA
GetDeviceCaps
DeleteObject

advapi32

ControlService
CloseServiceHandle
OpenSCManagerA
RegCloseKey
RegQueryInfoKeyA
RegOpenKeyExA
RegQueryValueA
RegQueryValueExA
QueryServiceStatus
DeleteService
OpenServiceA
RegSetValueA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA

shell32

SHGetMalloc
SHChangeNotify
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

OleUninitialize
OleInitialize

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 244KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

974d0871cd1868371477001f6ef58d84

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 244KB - Virtual size: 404KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 244KB - Virtual size: 404KB