JaffaCakes118_a1ba32396c54bf7ea5beb6d5b1ef8aef

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_a1ba32396c54bf7ea5beb6d5b1ef8aef
Size

178KB
MD5

a1ba32396c54bf7ea5beb6d5b1ef8aef
SHA1

ad0774e7aabaa011ce4db594af826a3534e61454
SHA256

af295119144d752b01e40e0ae85d189f37523fc10911c3408e865e32b0619b5a
SHA512

e9d51ae8eb6904da6ed258494221761291349feed91dd5ef92c327e07e561d1913fe11983a5488737abe72aeb8d97f66c5d9daf591fc2b79430ed4f8929aade6
SSDEEP

3072:pu79AGohTcoNYIsj4jo8wwwEZFfcCMTRUuCR0ag0ATXGeri40AEWny0:puJAQoOIsj4jo8wwwEZFfcCMTRJ+AKew

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a1ba32396c54bf7ea5beb6d5b1ef8aef

Files

JaffaCakes118_a1ba32396c54bf7ea5beb6d5b1ef8aef
.exe windows:6 windows x86 arch:x86

87d7f00f0982d6852e65b8c777708f8a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
DeleteAtom
CreateTimerQueue
GetSystemInfo
GetCurrentThreadId
GetCurrentProcessId
WaitForMultipleObjects
CreateEventW
CreateMutexW
ReleaseMutex
ResetEvent
SetEvent
GetProcessHeap
HeapCreate
SetFilePointerEx
CreateFileW
AddAtomW

user32

CheckMenuItem
EnableMenuItem
GetSubMenu
AppendMenuA
RemoveMenu
TrackPopupMenu
TrackPopupMenuEx
InsertMenuItemA
SetMenuItemInfoA
GetMenuDefaultItem
GetMenuItemRect
SetActiveWindow
InvalidateRect
RedrawWindow
DestroyMenu
ShowScrollBar
SetWindowTextA
GetWindowTextA
GetWindowTextW
GetClientRect
GetWindowRect
GetMenuContextHelpId
MessageBoxA
ShowCursor
SetCursor
GetCursorPos
GetClipCursor
SetCaretPos
ClientToScreen
ChildWindowFromPoint
GetSysColor
GetSysColorBrush
GetWindowLongA
SetWindowLongA
SetProcessDefaultLayout
GetDesktopWindow
FindWindowA
CheckMenuRadioItem
LoadCursorA
DestroyCursor
LoadIconA
DestroyIcon
IsDialogMessageA
GetScrollInfo
GetWindowInfo
RealGetWindowClassW
wvsprintfA
CreatePopupMenu
GetSystemMenu
GetMenu
GetSystemMetrics
TranslateAcceleratorA
DestroyAcceleratorTable
LoadAcceleratorsA
EnableWindow
KillTimer
SetTimer
GetActiveWindow
SetFocus
IsCharUpperW
CharLowerBuffA
CharUpperA
CharToOemW
GetOpenClipboardWindow
EmptyClipboard
EnumClipboardFormats
GetClipboardData
SetClipboardData
GetClipboardViewer
CloseClipboard
OpenClipboard
DefDlgProcA
SendDlgItemMessageA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
SetDlgItemInt
GetDlgItem
EndDialog
DialogBoxParamA
CreateDialogParamA
SetWindowPlacement
GetWindowPlacement
SetWindowPos
MoveWindow
GetLayeredWindowAttributes
DestroyWindow
IsMenu
IsWindow
GetClassInfoA
UnregisterClassA
RegisterClassA
CallWindowProcA
PostQuitMessage
PostMessageA
SendMessageA
DispatchMessageA
TranslateMessage
GetMessageA
wsprintfA
ScrollWindowEx

gdi32

GetObjectA
SetTextColor
SetBkMode
DeleteObject
GetStockObject
SelectObject
CreateFontIndirectA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

GetUserNameA
RegSetValueA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyA
RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

Shell_NotifyIconW
SHQueryRecycleBinW
ShellExecuteExW
ExtractIconExW
ExtractIconW
DuplicateIcon
FindExecutableW
ShellExecuteW
DragAcceptFiles
DragFinish
DragQueryFileW
CommandLineToArgvW
SHSetLocalizedName
ord19
ord25
ord155
ord153
ord17
ord21
ord23
ord154
SHBrowseForFolderW
SHGetDesktopFolder
SHChangeNotify
ord2
ord644
ord645
ord88
ord75
ord6
ord176
SHGetSettings
SHGetDiskFreeSpaceExA
SHGetIconOverlayIndexW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87d7f00f0982d6852e65b8c777708f8a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 20B

.rsrc Size: 118KB - Virtual size: 118KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 20B

.rsrc
Size: 118KB - Virtual size: 118KB

.reloc
Size: 5KB - Virtual size: 4KB