JaffaCakes118_1b9626077ee238f2c9e91450fd55b0e2

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_1b9626077ee238f2c9e91450fd55b0e2
Size

264KB
MD5

1b9626077ee238f2c9e91450fd55b0e2
SHA1

ffbf430f6f72133883acd605b587c23bc6843743
SHA256

2269b67fdd31dcb684408b90cbf0fe5ad69037ed18967972c57deae94a50e2a6
SHA512

d4117ce9d7c321c81123805bd2cbeec9f5888f4088861be7430f16a6de0452f0dbc81e58a91e025891ca07ce04531948efde3e65a4e339f9f71292ca99cd3d1d
SSDEEP

6144:3zpIT9mZ7acEGhFpwTMhxYlNqqogDkbO/SkF/a/0uFR/6q79:Dwc7a4hooxDAkbOaMa/0o/z9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1b9626077ee238f2c9e91450fd55b0e2

Files

JaffaCakes118_1b9626077ee238f2c9e91450fd55b0e2
.exe windows:4 windows x86 arch:x86

5493ecdcd746b846d41ba4697387c0be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumTimeFormatsA
GetSystemDefaultLCID
GetLongPathNameW
OpenMutexA
SetComputerNameW
MoveFileA
EnumDateFormatsW
IsValidLocale
SetCurrentDirectoryW
GlobalAlloc
GetHandleInformation
CreateDirectoryW
AddAtomA
GetExitCodeThread
GetExitCodeProcess
ReadDirectoryChangesW
CreateDirectoryA
CreateMailslotW
DuplicateHandle
SetCalendarInfoW
GetWindowsDirectoryA
GetSystemDirectoryA
GetProcAddress
SearchPathA
GetSystemInfo
GetModuleHandleA
ReplaceFileA
SetErrorMode
GetModuleHandleA
FreeLibrary
ReplaceFileW
GetAtomNameW
SetLocaleInfoA
SetEvent
GetModuleFileNameW
WaitForSingleObject
lstrlenW
TlsAlloc
MoveFileW
lstrcmpiA
OpenWaitableTimerA
IsBadCodePtr
EnumCalendarInfoW
GlobalFindAtomW
GetMailslotInfo
GetVolumeInformationW
lstrcmpA
GetExpandedNameW
FindAtomW
lstrcpy
GetStartupInfoW
AddAtomW
lstrcpyW
GetEnvironmentVariableA
OpenSemaphoreW
lstrcatW
LoadResource
EnumDateFormatsA
GetLogicalDriveStringsA
CompareFileTime
FindResourceA
OpenEventW
Beep
lstrcpyn
GetVersion
GetCPInfo
GetModuleHandleW
FindResourceW
GetShortPathNameW
GetTempPathA
CreateSemaphoreW
GetLogicalDrives
GetTimeFormatA
GetCurrentThreadId

user32

MessageBoxIndirectA
LoadCursorA
OpenClipboard
RemoveMenu
MonitorFromPoint
keybd_event
GetCaretPos
CreateDialogParamA
MonitorFromWindow
GetKeyboardLayout
IsMenu
CreateDesktopW
GetMessageW
GetMenuItemInfoW
GetClassInfoA
CreateWindowExW
TrackPopupMenuEx
GetClassInfoW
DefWindowProcW
MessageBoxA
DialogBoxParamA
SetCursor
ShowCursor
GetSystemMetrics
LoadCursorW
CopyIcon
LoadImageA
GetCapture
CreateDesktopA
IsIconic
LoadMenuA
CreateDialogParamW
GetMenuItemCount
GetDlgItemInt
CreateDialogIndirectParamA
CharPrevA
SetWindowTextW
AdjustWindowRect
SendMessageW
mouse_event
GetActiveWindow
ShowWindow
GetSysColor
GetScrollPos
GetForegroundWindow
GetKeyboardType
InsertMenuItemW
RegisterWindowMessageA
LoadBitmapA
PostQuitMessage
DialogBoxParamW
GetDlgItemTextA
SetWindowPos
SetWindowTextA
wsprintfA
DialogBoxIndirectParamW
CharNextW
WaitMessage
CreatePopupMenu
MonitorFromRect
AppendMenuW
wvsprintfW
CharPrevW
SetTimer
DestroyIcon
RegisterWindowMessageW
SetFocus
SetActiveWindow
GetCursorPos
CheckMenuItem
GetFocus
ShowCaret
EndMenu
InvalidateRect
SendDlgItemMessageW
CreateAcceleratorTableA
SetWindowLongW
UnregisterClassA
GetSubMenu
EmptyClipboard

gdi32

GetRasterizerCaps
GetStockObject
UpdateICMRegKeyW
SetMetaFileBitsEx
RemoveFontResourceW
CreateDIBPatternBrushPt
CreateScalableFontResourceW
GetTextExtentPointW
CreateColorSpaceA
CreateFontIndirectW
CreateFontW
CreatePatternBrush
CreatePolygonRgn
CreateFontIndirectA
GetTextExtentPointA
GetMetaFileW
SelectBrushLocal
CreateBitmap
CreateDIBSection
UpdateICMRegKeyA
CreateCompatibleDC
GdiGetBatchLimit
CreateEllipticRgn
ExtCreateRegion
TranslateCharsetInfo
CreateICW
AddFontResourceA
CreateBitmapIndirect
CreateRoundRectRgn
CreateScalableFontResourceA
RemoveFontResourceExW
DeleteObject
CreateMetaFileA
CreateColorSpaceW
GetMetaFileA
CreateFontA
CreateICA

advapi32

OpenEventLogA
IdentifyCodeAuthzLevelW
SetSecurityDescriptorDacl
LsaICLookupSids

version

VerFindFileW
VerInstallFileW
VerInstallFileA
VerLanguageNameW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerFindFileA
VerQueryValueA

mprapi

MprAdminMIBEntryCreate
MprAdminInterfaceTransportAdd
MprAdminTransportGetInfo
MprInfoDuplicate
MprDomainQueryRasServer
MprConfigServerConnect
MprInfoBlockAdd
MprConfigBufferFree
MprAdminConnectionClearStats
MprAdminTransportSetInfo
MprDomainRegisterRasServer
MprAdminGetErrorString
MprConfigTransportEnum
MprAdminRegisterConnectionNotification
RasPrivilegeAndCallBackNumber
MprConfigInterfaceTransportEnum
MprAdminInterfaceGetHandle
MprConfigTransportGetHandle
MprAdminInterfaceGetCredentialsEx
MprConfigInterfaceTransportAdd
MprAdminMIBServerConnect
MprConfigServerInstall
MprInfoBlockAdd

crypt32

CryptGetDefaultOIDDllList
I_CertUpdateStore
I_CryptFindLruEntry
CertSerializeCRLStoreElement
CryptMsgCountersign
CertVerifyCertificateChainPolicy

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.C
Size: 111KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 5KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srgyuO
Size: 112KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5493ecdcd746b846d41ba4697387c0be

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

version

mprapi

crypt32

Sections

.text Size: 12KB - Virtual size: 12KB

.C Size: 111KB - Virtual size: 164KB

.edata Size: 5KB - Virtual size: 276KB

.rdata Size: 6KB - Virtual size: 22KB

.data Size: 5KB - Virtual size: 93KB

.srgyuO Size: 112KB - Virtual size: 189KB

.edata Size: 4KB - Virtual size: 120KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.C
Size: 111KB - Virtual size: 164KB

.edata
Size: 5KB - Virtual size: 276KB

.rdata
Size: 6KB - Virtual size: 22KB

.data
Size: 5KB - Virtual size: 93KB

.srgyuO
Size: 112KB - Virtual size: 189KB

.edata
Size: 4KB - Virtual size: 120KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 1KB - Virtual size: 4KB