JaffaCakes118_22f1858717583dbd59c18d6dbb5b049b

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_22f1858717583dbd59c18d6dbb5b049b
Size

185KB
MD5

22f1858717583dbd59c18d6dbb5b049b
SHA1

887be3af12e0430df89eddb47eeefb8f1ce59ea7
SHA256

291018d22b3afb4ed1fe56900d2cb38ed480ef13e7d55eea371480d121ca0361
SHA512

8b5fa6b1d3553d508b8ff2233b1e6c3ebb8440e7ac46440e347ec7ff15c799fb58acb086912a49bc9714d57b937423e86dccb6a4b58fea8ab500f262ffba31d9
SSDEEP

3072:xFP6GrH8SAPPrcfqoaC4uNQq8Zgz5batZoZR9qui3YhrAsAAifNcI5bP:xl6IH8SmgfzNQq8Zgz52ty9quUYxzAR1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_22f1858717583dbd59c18d6dbb5b049b

Files

JaffaCakes118_22f1858717583dbd59c18d6dbb5b049b
.exe windows:4 windows x86 arch:x86

ebee13a8c64e3e241a1918e09f1acabb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRegisterMessageFilter
CoTaskMemAlloc
OleUninitialize
OleFlushClipboard
CoGetClassObject
CoFreeUnusedLibraries
CLSIDFromProgID
CoTaskMemFree
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
CoCreateInstance
CoRevokeClassObject
OleInitialize
CoUninitialize
StgCreateDocfileOnILockBytes
CoInitialize
StgOpenStorageOnILockBytes
CLSIDFromString

kernel32

GetVersion
GetThreadLocale
FindResourceW
ReadFile
RaiseException
GetCalendarInfoA
InitializeCriticalSection
RemoveDirectoryW
LockResource
GetLocaleInfoA
FindClose
GetModuleHandleW
SetFilePointer
GetCurrentProcessId
GetSystemDefaultLangID
DeleteFileW
lstrcpyW
FindNextFileW
DeleteCriticalSection
GetThreadContext
FindFirstFileW
MultiByteToWideChar
MoveFileW
LoadResource
LocalFileTimeToFileTime
SizeofResource
GetFileAttributesW
GetACP
CreateMutexW
EnumResourceNamesA
WideCharToMultiByte
WriteFile
ConvertDefaultLocale
FreeLibrary
InterlockedDecrement
CreateFileW
LoadLibraryW
SystemTimeToFileTime
ExitProcess
GetCurrentDirectoryW
CreateDirectoryW
lstrcmpiA
GetModuleFileNameW
EnumResourceLanguagesW
WaitForSingleObject
VirtualFree
GetProcAddress
ReleaseMutex
CloseHandle
GetVersionExW
GetLocaleInfoW
SetFileTime
InterlockedExchange
lstrcmpA

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueW
RegOpenKeyW
RegCreateKeyExW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegEnumKeyW
RegEnumKeyExW
RegQueryValueExW

gdi32

ScaleViewportExtEx
GetObjectW
SetTextColor
PtVisible
DeleteObject
DeleteDC
SetViewportExtEx
GetWindowExtEx
RestoreDC
GetTextColor
ExtSelectClipRgn
SetViewportOrgEx
OffsetViewportOrgEx
GetBkColor
GetViewportExtEx
Escape
SetMapMode
SetWindowExtEx
GetMapMode
GetStockObject
CreateBitmap
SelectObject
GetDeviceCaps
ScaleWindowExtEx
SaveDC
ExtTextOutW
TextOutW
RectVisible
GetRgnBox
SetBkColor
GetClipBox
CreateRectRgnIndirect

oledlg

OleUIBusyW

shlwapi

PathRemoveFileSpecW
PathFindFileNameW
PathFileExistsW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathAppendW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

user32

GetForegroundWindow
IsChild
UpdateWindow
CopyAcceleratorTableW
MessageBeep
AdjustWindowRectEx
SendDlgItemMessageA
IsRectEmpty
RegisterClassW
DefWindowProcW
SetRect
GetPropW
CharUpperW
OffsetRect
EqualRect
SetForegroundWindow
InvalidateRgn
GetMessageTime
GetMenu
IntersectRect
GetClassInfoW
InvalidateRect
GetMessagePos
GetNextDlgGroupItem
GetNextDlgTabItem
CharNextW
GetClassLongW
CreateWindowExW
MapWindowPoints
GetClassInfoExW
GetWindowPlacement
IsIconic
IsWindow
RegisterWindowMessageW
GetTopWindow
SetPropW
WinHelpW
CallWindowProcW
LoadIconW
GetClientRect
SetActiveWindow
RemovePropW
DestroyMenu

comdlg32

GetFileTitleW

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ebee13a8c64e3e241a1918e09f1acabb

Headers

File Characteristics

Imports

ole32

kernel32

winspool.drv

advapi32

gdi32

oledlg

shlwapi

shell32

user32

comdlg32

Sections

.text Size: 104KB - Virtual size: 104KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 73KB - Virtual size: 73KB

.edata Size: 1024B - Virtual size: 236KB

.text
Size: 104KB - Virtual size: 104KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 73KB - Virtual size: 73KB

.edata
Size: 1024B - Virtual size: 236KB