JaffaCakes118_1881000e125840e2f1ce8e11fd11fd79

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_1881000e125840e2f1ce8e11fd11fd79
Size

167KB
MD5

1881000e125840e2f1ce8e11fd11fd79
SHA1

373c1710c52a49b837c916c2e5f7f9f89262ea98
SHA256

4fcf450667218a1df9353065002c149c5114c3dbb1fe1c3b637e8ec6c31d7fde
SHA512

789198b085b9e7e060b0bbb4879c9c61ebcca3a6777dadda43b85cc7164540ac071d25539f0db5e86e88a2805c55c8c170fa356bf6e026c2a8a8d9af183a9860
SSDEEP

3072:qDcGnHuWxN1GNscDYyKGXms753/oUlX47aJfi97ynwXMI/VJZot:UfnOWLyKGXn3QkZJ479XrVJZot

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1881000e125840e2f1ce8e11fd11fd79

Files

JaffaCakes118_1881000e125840e2f1ce8e11fd11fd79
.exe windows:4 windows x86 arch:x86

18f800239b8bb6bf567f124f7f61679f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvfw32

ICInfo

comctl32

ImageList_Draw
ImageList_Create
ImageList_ReplaceIcon
ImageList_Destroy

gdi32

CombineRgn
LineTo
ExtCreateRegion
GetTextMetricsW
DeleteDC
CreatePen
GetCharWidthW
CreateDIBSection
SetBkColor
CreatePatternBrush
GetDeviceCaps
CreateDCW
CreateFontW
DeleteObject
CreateSolidBrush
SetTextColor
MoveToEx
SelectObject
SetViewportOrgEx
CreateCompatibleBitmap
GetObjectW
StretchBlt
BitBlt
CreateCompatibleDC
SetBkMode
SetViewportExtEx
GetStockObject

kernel32

GetVDMCurrentDirectories
FreeLibrary
GetProcAddress
GetUserDefaultUILanguage
GetModuleHandleA
HeapAlloc
SetThreadPriorityBoost
MoveFileW
ReadFile
WriteFile
OutputDebugStringW
MultiByteToWideChar
EnumResourceNamesW
GetLocalTime
CreateFileA
DeleteFileW
FindFirstFileW
WideCharToMultiByte
SetFilePointer
CreateProcessW
SetUnhandledExceptionFilter
LoadLibraryW
GetCurrentProcessId
ExitProcess
FindClose
HeapFree

user32

EndDialog
SetRect
SetWindowsHookExW
AdjustWindowRect
GetWindowRect
MoveWindow
GetSysColor
GetMenuStringW
GetWindowInfo
GetWindowLongW
GetDlgItem
SetWindowTextW
MessageBoxW
SendMessageW

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
RegEnumKeyW
RegSetValueExW
RegDeleteKeyA

shell32

ShellExecuteW

comdlg32

GetSaveFileNameW

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 1024B - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18f800239b8bb6bf567f124f7f61679f

Headers

File Characteristics

Imports

msvfw32

comctl32

gdi32

kernel32

user32

advapi32

shell32

comdlg32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 62KB - Virtual size: 61KB

.imul Size: 1024B - Virtual size: 376KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 62KB - Virtual size: 61KB

.imul
Size: 1024B - Virtual size: 376KB