JaffaCakes118_7b198772f7537b85497ecb23545ba2ce

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_7b198772f7537b85497ecb23545ba2ce
Size

172KB
MD5

7b198772f7537b85497ecb23545ba2ce
SHA1

9266c8e880ff247b4a0260019328c8ffd3ac05f6
SHA256

063c81d12968d51e53c675030ebd49ec5f9283e52049460a22e5cfd7c7f82cec
SHA512

a1c43f1793171c875b1f5a1df3173da8ab1af87f14751cecbca0c21a41849f1a805d4be24c2a6b5dbbeb6ae5d667e491bdf67bfed182b919c120535068bb3f25
SSDEEP

3072:eF3WWl4UBXhn3GPl1SNEUoJ5HIKAsnWqREKUE1GKCA1L:bW6+x3ol0EUeHzrWhKZAKN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7b198772f7537b85497ecb23545ba2ce

Files

JaffaCakes118_7b198772f7537b85497ecb23545ba2ce
.exe windows:4 windows x86 arch:x86

6ced351dce51b5baedea9488676276b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

user32

GetDC
FillRect
GetDlgItem
ReleaseCapture
GetWindowLongA
IsWindow
ReleaseDC
SetWindowLongA
LoadCursorA
SetWindowPos
MoveWindow
GetSysColor
GetWindowInfo
SetCursor
SetCapture

gdi32

DeleteMetaFile
CreateFontIndirectA
Rectangle
RestoreDC
CreateSolidBrush
DeleteObject
BitBlt
SaveDC
SetBkMode
CreateCompatibleDC
CreateRectRgn
TextOutA
SelectObject
GetDeviceCaps
DeleteDC
SetTextColor
GetStockObject
GetTextExtentPoint32A
EnumFontFamiliesExA
GetObjectA
CreateCompatibleBitmap

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

LoadLibraryW
GetACP
GetSystemTime
Sleep
GetCalendarInfoW
GetLocaleInfoA
TerminateProcess
SetUnhandledExceptionFilter
CloseHandle
GetModuleHandleA
GetStartupInfoA
HeapDestroy
LoadLibraryExW
LocalAlloc
SystemTimeToFileTime
MultiByteToWideChar
lstrlenW
CreateProcessA
GetCurrentProcess
GetThreadLocale
WriteFile
CreateFileW
InterlockedCompareExchange
EnumResourceNamesA
HeapReAlloc
IsDebuggerPresent
InterlockedExchange
GetSystemTimeAsFileTime
HeapAlloc
lstrlenA
GetCurrentThreadId
WideCharToMultiByte
GetStdHandle
FindFirstFileW
GetEnvironmentVariableA
GetProcessHeap
HeapSize
RaiseException
HeapFree
GetTickCount
UnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
lstrcpynW

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

advapi32

RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

winmm

mciSendCommandA
sndPlaySoundA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ced351dce51b5baedea9488676276b8

Headers

File Characteristics

Imports

version

user32

gdi32

oleacc

kernel32

ole32

advapi32

winmm

shell32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: 71KB - Virtual size: 71KB

.rsrc Size: 1024B - Virtual size: 252KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: 71KB - Virtual size: 71KB

.rsrc
Size: 1024B - Virtual size: 252KB