JaffaCakes118_03458c8ef79988556b7ede931ba397ca

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_03458c8ef79988556b7ede931ba397ca
Size

258KB
MD5

03458c8ef79988556b7ede931ba397ca
SHA1

a7e21c6f60f652ce5bc20ccdfd856c457836977a
SHA256

6640d4e5fb25f8cf9a4b6d83531a0895db8bd689184871dbde7984bb838f3a41
SHA512

186c6e1d1bdf81b5673c604b22460236eb682808b072d9f0602c67bae45d025f3d07b51f558b9c6437cc9f009dbe58fb96eafcfd7448c912c30148ba23d0a734
SSDEEP

6144:XUMbdFnqarKpBZvDF0NUiaGTUemiS12oJuS+I2:kMFnJKRvDFUUZQO2oES+I2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_03458c8ef79988556b7ede931ba397ca

Files

JaffaCakes118_03458c8ef79988556b7ede931ba397ca
.exe windows:4 windows x86 arch:x86

af03bbd9a6c51f9a2745b3e8414975d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetModuleHandleW
LoadLibraryW
GetModuleFileNameW
SetEvent
Sleep
GetLastError
GetExitCodeThread
GetTempPathW
WaitForSingleObject
GetStartupInfoW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
IsDebuggerPresent
GetVersionExW
LocalFree
LocalAlloc
MulDiv
GetVersion
GetProcAddress
GetModuleHandleA

user32

GetActiveWindow
GetIconInfo
GetFocus
IsWindow
CopyRect
LoadImageW
InvalidateRect
DestroyIcon
wsprintfW
LoadIconW
EnableWindow
IsIconic
PostMessageW
GetSystemMetrics
MessageBoxW
SendMessageW
GetDlgItemTextW
CharLowerW
RegisterClassExA
wsprintfA
GetCaretPos
DialogBoxIndirectParamA
MonitorFromWindow
MonitorFromPoint
SetWindowPos
EnableMenuItem
AppendMenuW
InsertMenuItemW
PeekMessageA
CharPrevW
FindWindowA
CreateDesktopW
WaitForInputIdle
GetMenu
GetMessageW
AdjustWindowRect
GetSysColorBrush
GetClassInfoW
LoadIconA
SetCapture
OpenClipboard
GetMenuItemCount
SetCursor
RegisterWindowMessageW
MessageBoxIndirectA
LoadImageA
SetFocus
SetParent
LoadMenuW
CharUpperW
GetDlgItemInt
FindWindowW
MonitorFromRect
IsChild
MessageBoxIndirectW
CopyIcon
GetMenuItemInfoW
CheckMenuItem
LoadCursorW
ShowWindow
CreateWindowExA
SetDlgItemInt
WinHelpA

gdi32

CreatePatternBrush
DeleteObject
CreateCompatibleDC
CreatePen
CreateFontIndirectW
CreatePalette
CreateSolidBrush
GetStockObject
CreateColorSpaceA
CreateHatchBrush
CreateFontW
CreateDIBPatternBrush
CreateBrushIndirect
SetEnhMetaFileBits
ExtCreateRegion
UpdateICMRegKeyA
CreateEllipticRgn

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

comctl32

ord17

urlmon

IsValidURL
URLDownloadToFileW

winipsec

GetQMPolicy
DeleteMMPolicy

avifil32

EditStreamClone
AVIStreamBeginStreaming
EditStreamPaste
AVIStreamGetFrameClose
AVIStreamInfo
AVIFileInfoW
AVIGetFromClipboard
AVISaveW
AVIStreamWrite
AVIStreamFindSample
EditStreamSetName
AVIFileOpenW

Sections

CODE
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hs
Size: 109KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hBd
Size: 109KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af03bbd9a6c51f9a2745b3e8414975d6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

urlmon

winipsec

avifil32

Sections

CODE Size: 9KB - Virtual size: 8KB

.edata Size: 13KB - Virtual size: 16KB

.rdata Size: 3KB - Virtual size: 43KB

.hs Size: 109KB - Virtual size: 119KB

.data Size: 5KB - Virtual size: 275KB

.hBd Size: 109KB - Virtual size: 164KB

.rsrc Size: 8KB - Virtual size: 8KB

CODE
Size: 9KB - Virtual size: 8KB

.edata
Size: 13KB - Virtual size: 16KB

.rdata
Size: 3KB - Virtual size: 43KB

.hs
Size: 109KB - Virtual size: 119KB

.data
Size: 5KB - Virtual size: 275KB

.hBd
Size: 109KB - Virtual size: 164KB

.rsrc
Size: 8KB - Virtual size: 8KB