JaffaCakes118_82d382c0e12df463aadaf0a53abf72c1

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_82d382c0e12df463aadaf0a53abf72c1
Size

252KB
MD5

82d382c0e12df463aadaf0a53abf72c1
SHA1

a533d5e4a8a60c1f6730e3bf7a798c705f9dff38
SHA256

2816d996512a747b91eec89a400becea829d182ac94bc044fc743bafb65e40ce
SHA512

3245b26d5c28a1632b2bf88d68e49a76ae9b1ad4e1ba5ec24f9128819d06c6228406b81e4b422a4ad25d2aa13e0e4c316c0877f1df1d09e0514a5c614022376d
SSDEEP

6144:dC/Md2NqGQ+NmMrJ1EOxhK+5Sd+h9Q1hwawZ:8k0vQ+NhJV5SUQ1aaw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_82d382c0e12df463aadaf0a53abf72c1

Files

JaffaCakes118_82d382c0e12df463aadaf0a53abf72c1
.exe windows:4 windows x86 arch:x86

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
GlobalAlloc
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
GetLogicalDriveStringsW
GetVersion
InitializeCriticalSection
WaitForSingleObject
lstrlenA
GetModuleHandleW
LoadLibraryW
GetLastError
LocalFree
GetModuleFileNameW
LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
lstrcpynA
GetVersionExW
GetCurrentThread
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
Sleep
SetEvent
GetVersionExA
GetThreadLocale
GetLocaleInfoA
WaitForMultipleObjects
GetACP
lstrcmpW
GetProcAddress
LoadLibraryA

user32

PostMessageW
EnableWindow
LoadImageW
IsWindow
CheckMenuItem
EnableMenuItem
GetSubMenu
LoadMenuW
LoadCursorW
SetCursor
LoadIconW
GetCursorPos
SendMessageW
DestroyIcon
InvalidateRect
GetSystemMetrics
SetForegroundWindow
RegisterWindowMessageW
SetWindowTextW
CharUpperW
MessageBoxW
AppendMenuA
TrackPopupMenu
WinHelpW
CreateDesktopA
EndMenu
DialogBoxParamA
GetForegroundWindow
WinHelpA
PeekMessageW
DialogBoxIndirectParamA
SendDlgItemMessageW
wvsprintfA
MonitorFromRect
MessageBoxIndirectA
GetCapture
GetDCEx

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteObject
AddFontResourceA
SetWinMetaFileBits
ExtCreateRegion
CreatePolyPolygonRgn
CreatePatternBrush
CreateFontIndirectW
RemoveFontResourceA
CreateBitmap
GetTextExtentPointW

advapi32

EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegDeleteKeyW
RegDeleteKeyA
FreeSid
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
LookupAccountSidW
AllocateAndInitializeSid

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconExW

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime

netapi32

NetReplGetInfo
NetUseGetInfo

Sections

.icode
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Gxrxi
Size: 105KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.muIJdp
Size: 108KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

netapi32

Sections

.icode Size: 8KB - Virtual size: 8KB

CODE Size: 11KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 16KB

.Gxrxi Size: 105KB - Virtual size: 141KB

.data Size: 5KB - Virtual size: 362KB

.muIJdp Size: 108KB - Virtual size: 176KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 4KB

.icode
Size: 8KB - Virtual size: 8KB

CODE
Size: 11KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 16KB

.Gxrxi
Size: 105KB - Virtual size: 141KB

.data
Size: 5KB - Virtual size: 362KB

.muIJdp
Size: 108KB - Virtual size: 176KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 4KB