JaffaCakes118_dc23780f7fead680462e452e842d3d03

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_dc23780f7fead680462e452e842d3d03
Size

176KB
MD5

dc23780f7fead680462e452e842d3d03
SHA1

6d1df860677bd9fa00e63da7aa76753905d3bef4
SHA256

4f2da5ab54128bac592d89b01789a062be4280eb3f5d4aff4e98cbe4f8bf3543
SHA512

055695346219b349e7929f808c8136de894cff1c87c7c9d6b84ef49d39c7fcd3209cf03d0a0f4e25128bf04b2990ab738dcf8d77b4868d3ed3b84b5bf7e9be23
SSDEEP

3072:th7cOSXK9Qw/uPNk0isoVe9DaHV9wgrMKcvqmS17QYKilLMOQk5VNtK8qIBM:tKO39//L0J9DaHbxcCmS17yALbVjtF+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_dc23780f7fead680462e452e842d3d03

Files

JaffaCakes118_dc23780f7fead680462e452e842d3d03
.exe windows:4 windows x86 arch:x86

10b452f9033c75fa9bcd924874467d46

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

advapi32

CryptImportKey
RegDeleteValueA
RegCloseKey
RegEnumValueA
RegEnumKeyExA
RegOpenKeyExA
CryptCreateHash
RegSetValueExA
CryptReleaseContext
CryptAcquireContextA
CryptDestroyKey
CryptEncrypt
RegQueryValueExA
RegQueryInfoKeyA
CryptDestroyHash
CryptGetHashParam
CryptHashData
RegCreateKeyExA
RegDeleteKeyA

version

GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoA
VerQueryValueA

shlwapi

PathFileExistsW
PathCombineW

ole32

StgIsStorageFile
OleUninitialize
GetRunningObjectTable
CoTaskMemRealloc
CoGetClassObject
CoTaskMemFree
CoInitialize
CreateStreamOnHGlobal
StgCreateDocfile
StringFromGUID2
CoUninitialize
CLSIDFromProgID
OleLockRunning
BindMoniker
CreateBindCtx
CoInitializeSecurity
CoCreateInstance
CoTaskMemAlloc
OleInitialize
CoSetProxyBlanket
StgOpenStorage
CreateItemMoniker
CLSIDFromString

gdi32

SelectPalette
SetStretchBltMode
GetDIBits
StretchDIBits
CreateCompatibleBitmap
CreateSolidBrush
CreateDIBitmap
GetStockObject
DeleteDC
ExtEscape
SelectObject
GetObjectA
RealizePalette
CreateCompatibleDC
CreateFontA
BitBlt
GetDeviceCaps
DeleteObject
CreateDIBSection
SetBkMode

kernel32

GlobalSize
LocalAlloc
GetLongPathNameW
WriteFile
CreateFileW
ReadFile
GlobalAlloc
GetTickCount
GetProcessHandleCount
GetFileSize
LocalFree
MapViewOfFile
DisableThreadLibraryCalls
EnumResourceTypesA
WideCharToMultiByte
CreateFileA
UnmapViewOfFile
GetFileAttributesA
CreateFileMappingA
Sleep
GlobalFree
SetFilePointer
CloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

user32

FillRect
DefWindowProcA
BeginPaint
CharNextA
ReleaseCapture
SetFocus
GetFocus
GetDlgItem
EqualRect
PostMessageA
GetActiveWindow
UnregisterClassA
IsChild
MsgWaitForMultipleObjects
GetParent
CallWindowProcA
GetClientRect
DispatchMessageA
PeekMessageA
GetWindowTextA
InvalidateRgn
MoveWindow
SetWindowLongA
GetClassInfoExA
LoadCursorA
CreateWindowExA
EnumDisplayDevicesA
RegisterClassExA
GetQueueStatus
SendNotifyMessageA
RegisterWindowMessageA
DrawTextA
wsprintfA
GetDesktopWindow
SetCapture
GetWindow
SetRect
KillTimer
GetSysColor
SendMessageTimeoutA
DestroyAcceleratorTable
CreateAcceleratorTableA
GetWindowLongA
SetTimer
wvsprintfA
CopyRect
PostThreadMessageA
SetParent
ReleaseDC
GetDC
FindWindowA
InvalidateRect
EndPaint
SetWindowTextA
GetWindowTextLengthA
RedrawWindow
DestroyWindow
CreateDialogParamA
GetWindowRect
SendMessageA
ShowWindow
IsWindow
GetClassNameA
SetWindowPos

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

10b452f9033c75fa9bcd924874467d46

Headers

File Characteristics

Imports

setupapi

advapi32

version

shlwapi

ole32

gdi32

kernel32

shell32

wininet

user32

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 67KB - Virtual size: 67KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 67KB - Virtual size: 67KB

.tls
Size: 1024B - Virtual size: 92KB