JaffaCakes118_2ee455b588e1dd5ff87116a4569be95f

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_2ee455b588e1dd5ff87116a4569be95f
Size

252KB
MD5

2ee455b588e1dd5ff87116a4569be95f
SHA1

20b446c8fb9c0b5a212f372e598911796f5358cb
SHA256

195eda03e05427a4b63d6823f86fc91cc5ba90d019b9d70480a9bded5e2b1f74
SHA512

aec10dca3838e834f5f1bb23410b2f461a7f3e5d6c2ee6ee7317f19abd9ac587637d7e7a21c86f99c11da5a71a3a8f0593a2bb8006f1f6ee036f5d87b95cf753
SSDEEP

6144:mfqVGhzLYSE1WI4Cpj7f/2pfaxl9IfgViXEVnHD:oEG5LYS8WqBHt1IfgJHD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_2ee455b588e1dd5ff87116a4569be95f

Files

JaffaCakes118_2ee455b588e1dd5ff87116a4569be95f
.exe windows:4 windows x86 arch:x86

755126831b813abfc58092634e4044b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
GetLocalTime
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
ExitProcess
GetSystemDirectoryW
GetLongPathNameW
GetCurrentThreadId
GetVersionExA
GetProcessHeap
GetLastError
TlsAlloc
GetCurrentThread
FileTimeToSystemTime
FileTimeToLocalFileTime
Sleep
GetEnvironmentVariableA
HeapCreate
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
FreeLibrary
LoadLibraryA
InitializeCriticalSection
MultiByteToWideChar
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeW
LoadLibraryW
GetLocaleInfoA
GetLocaleInfoW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatA
GetDateFormatA
Beep
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
CreateDirectoryA
RemoveDirectoryA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
MoveFileA
RaiseException
GetExitCodeProcess
WaitForSingleObject
GetSystemInfo
DuplicateHandle
CreatePipe
SystemTimeToFileTime
GetVersion
GetProcAddress

samlib

SamCloseHandle
SamFreeMemory

user32

SetForegroundWindow
RegisterClassA
AppendMenuW
DialogBoxIndirectParamA
RemoveMenu
EmptyClipboard
SetWindowLongW
UnregisterClassW
SetCapture
RegisterClassExW
OffsetRect
GetClassInfoW
IsChild
OpenClipboard
GetKeyboardType
CharPrevW
MonitorFromWindow
DestroyIcon
wsprintfW
SendDlgItemMessageW
SendDlgItemMessageA
EnumClipboardFormats
GetCapture
IsDlgButtonChecked
RegisterWindowMessageW
GetMenuInfo
LoadMenuA
WaitForInputIdle
LoadIconA
GetMenuItemRect
LoadBitmapW
wvsprintfA
SetCursorPos
LoadCursorA
LoadCursorW
GetClassInfoExA
SetTimer

gdi32

AddFontResourceW
GetMetaFileA
CreateBrushIndirect
CreateICW
CreateFontIndirectW
AddFontResourceA
RemoveFontResourceW

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.QiuSS
Size: 1KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hk
Size: 74KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rkfY
Size: 2KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.YbWCgr
Size: 144KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

755126831b813abfc58092634e4044b4

Headers

File Characteristics

Imports

kernel32

samlib

user32

gdi32

Sections

.text Size: 12KB - Virtual size: 12KB

.QiuSS Size: 1KB - Virtual size: 70KB

.hk Size: 74KB - Virtual size: 156KB

.rdata Size: 3KB - Virtual size: 49KB

.rkfY Size: 2KB - Virtual size: 320KB

.data Size: 6KB - Virtual size: 149KB

.YbWCgr Size: 144KB - Virtual size: 162KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 12KB - Virtual size: 12KB

.QiuSS
Size: 1KB - Virtual size: 70KB

.hk
Size: 74KB - Virtual size: 156KB

.rdata
Size: 3KB - Virtual size: 49KB

.rkfY
Size: 2KB - Virtual size: 320KB

.data
Size: 6KB - Virtual size: 149KB

.YbWCgr
Size: 144KB - Virtual size: 162KB

.rsrc
Size: 7KB - Virtual size: 7KB