JaffaCakes118_206ffaa99f030ee349bf90acc1541540

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_206ffaa99f030ee349bf90acc1541540
Size

200KB
MD5

206ffaa99f030ee349bf90acc1541540
SHA1

fe778710a662c6660459237729733a0aad2cf559
SHA256

9da7a9400ec94ed272a6a8b32b801f1167ff82d7dae3cae4d6aa60212b3dc689
SHA512

1c195292d7e82ec9f38f5f800cfb93af95b2a9a9f9811cb774d85cd6a6a0aaaefc17f019b0d04fe8e86e84b07c814e4986df8d84cb6534212ecb4297cc2fff7c
SSDEEP

3072:PN5H8Hb7WuB9j0gGXSPByTUhSg0z8nx+FvVl+xSM50KWdS5O/Xub9YK1nH4PLs:2bJmrSZkWznxuvL+cmH5Xx1nH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_206ffaa99f030ee349bf90acc1541540

Files

JaffaCakes118_206ffaa99f030ee349bf90acc1541540
.exe windows:4 windows x86 arch:x86

50387dedaf492a9aeb99d3fe12aa3e29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

RoundRect
SetTextColor
CreatePen
StrokePath
CreateFontIndirectA
ExtCreatePen
GetPath
PolyBezier
GetBitmapBits
GetBkColor
FlattenPath
AnimatePalette
PlgBlt
SetStretchBltMode
SetDIBits

comdlg32

GetFileTitleA

comctl32

ImageList_Add
ImageList_DrawEx
ImageList_Create
ImageList_GetIconSize
ImageList_Destroy

user32

DrawEdge
SetClipboardData
IsClipboardFormatAvailable
SetWindowPos
ClipCursor
SetWindowsHookExW
ToAscii
GetSysColorBrush
MonitorFromWindow
DefWindowProcW
UnhookWindowsHookEx
SetScrollRange
DestroyCursor
RegisterClassW
EmptyClipboard
ChildWindowFromPoint
WinHelpW
DestroyIcon
CallNextHookEx
GetSysColor

kernel32

CreateFiberEx
GetProfileStringW
SetEndOfFile
GetVersionExW
UnlockFile
LockFile
SetCommConfig
GetFileTime
VerLanguageNameW
FileTimeToSystemTime
GetFileType
GetSystemTime
FileTimeToLocalFileTime
EnumResourceNamesW
FlushFileBuffers
LocalAlloc
SearchPathW
FindResourceExA
GetVolumeInformationW
GetUserDefaultLangID
GetFileAttributesA
IsDBCSLeadByte
FlushFileBuffers
CompareStringW
GetSystemDirectoryW

shlwapi

PathCanonicalizeW
PathIsRootW
PathIsURLW
PathIsRelativeW
PathStripToRootW
PathCombineW

ole32

OleRegGetUserType
RegisterDragDrop
GetHGlobalFromILockBytes
CoTaskMemAlloc
StgOpenStorageOnILockBytes
OleGetAutoConvert
ProgIDFromCLSID
CoCreateGuid
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
CLSIDFromProgID
ReleaseStgMedium
GetHGlobalFromStream
CLSIDFromString
CoCreateInstance
CoFreeUnusedLibraries
OleDuplicateData
StringFromCLSID
CoGetClassObject
CoGetMalloc
CoTaskMemFree
RevokeDragDrop
OleRun
CreateILockBytesOnHGlobal

rpcrt4

RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
NdrClientCall
RpcStringFreeA

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50387dedaf492a9aeb99d3fe12aa3e29

Headers

File Characteristics

Imports

gdi32

comdlg32

comctl32

user32

kernel32

shlwapi

ole32

rpcrt4

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 15KB - Virtual size: 15KB

.lib Size: 512B - Virtual size: 224KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 15KB - Virtual size: 15KB

.lib
Size: 512B - Virtual size: 224KB