JaffaCakes118_167470972692984167e26d24e921754f

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_167470972692984167e26d24e921754f
Size

223KB
MD5

167470972692984167e26d24e921754f
SHA1

165917d9694e3e777662542431f10b5fe7d9669c
SHA256

191e09d484a629866e025d8364bc64873eb986ff28fb347a4bc5205345f56b23
SHA512

30fffd3e3e29d4866ca65808122c90d84432c2b464e0cced164a1c54aa7dac4fa387e72f88a388d1bae16bd34ccb35c8f2e8833c13cbdf151c9e088f2b1348e4
SSDEEP

3072:H+jGBAAHC+U3/dt57vJGg4thAVDdP0hSThhVGepn4bxhnxZAk7C4/mrZAAs:Uht5Bn4yWOjGeB4NhvF/In

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_167470972692984167e26d24e921754f

Files

JaffaCakes118_167470972692984167e26d24e921754f
.exe windows:4 windows x86 arch:x86

1bc92f964abf1f9d9542073370c8b867

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExpandedNameW
ReplaceFileA
OpenEventA
GetProcAddress
SetLocaleInfoW
IsValidCodePage
LoadLibraryA
GetNumberFormatA
GetLogicalDriveStringsW
lstrcpynA
CopyFileExW
GetUserDefaultLCID
GetStartupInfoW
lstrcmpiA
CreateNamedPipeA
EndUpdateResourceW
GetExpandedNameA
FreeResource

user32

DestroyWindow
GetCaretPos
CharLowerW
EndDialog
ShowCaret
SetDlgItemTextW
GetWindowTextLengthA
ActivateKeyboardLayout
LoadBitmapW
DrawTextA
DefFrameProcW
GetMessageW
GetClassLongW
CreateDesktopA
MessageBoxA
IsWindow
MonitorFromWindow
GetMenuItemInfoA
DefWindowProcW
GetWindowLongW
EnumWindows
SetWindowTextA
LoadMenuA
RegisterWindowMessageA
EmptyClipboard
LoadBitmapA
MessageBoxW
UpdateLayeredWindow
EnumClipboardFormats
GetWindowRect
GetMenuState
ClientToScreen
ShowWindow
SetParent
RegisterClassExA
GetClassLongA
GetCapture
PostMessageA
CheckMenuRadioItem
UpdateWindow
AnimateWindow
IsCharUpperA
GetMenuStringA
GetTopWindow
EnableWindow
CreateDialogIndirectParamW
EnumDesktopWindows

gdi32

SetPixelV
DeleteColorSpace
CreateDCA
BeginPath
SetAbortProc
SetMetaFileBitsEx
GetFontData
CreateFontW
GetNearestPaletteIndex
EnumFontFamiliesA
GetStockObject
SetEnhMetaFileBits
GetTextExtentPointI

advapi32

RegQueryInfoKeyA
RegFlushKey
RegCreateKeyExA
RegDeleteValueA
RegCreateKeyA

shell32

SHGetDiskFreeSpaceExA
StrRChrA
SHCreateDirectoryExA
SHCreateDirectory
StrStrIA
StrRChrW
ShellExecuteA
ShellExecuteW
Shell_NotifyIconW
SHGetFolderPathW
StrCmpNA

shlwapi

UrlGetPartA
StrFormatByteSizeA
SHRegGetUSValueA
StrFormatKBSizeW
PathStripPathA
PathIsRootA
PathUndecorateW
PathSkipRootA

winspool.drv

DeletePrinterDataExW
EnumFormsW
GetPrinterA
DocumentPropertiesA
DeletePrinterDriverA
OpenPrinterA

inetcomm

CreateNNTPTransport
EssSignCertificateEncodeEx
HrAthGetFileNameW
MimeOleParseMhtmlUrl
EssMLHistoryDecodeEx
HrFreeAttachData
MimeOleGetCharsetInfo
CreateIMAPTransport2
DllCanUnloadNow
EssKeyExchPreferenceDecodeEx
MimeOleGenerateFileName

Sections

.taZV
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gcH
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Lz
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.GU
Size: 3KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bEMY
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Eo
Size: 3KB - Virtual size: 383KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1bc92f964abf1f9d9542073370c8b867

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

shlwapi

winspool.drv

inetcomm

Sections

.taZV Size: 8KB - Virtual size: 7KB

.gcH Size: 84KB - Virtual size: 83KB

.Lz Size: 12KB - Virtual size: 12KB

.GU Size: 3KB - Virtual size: 42KB

.bEMY Size: 86KB - Virtual size: 85KB

.data Size: 15KB - Virtual size: 212KB

.Eo Size: 3KB - Virtual size: 383KB

.rsrc Size: 9KB - Virtual size: 8KB

.reloc Size: 1024B - Virtual size: 1024B

.taZV
Size: 8KB - Virtual size: 7KB

.gcH
Size: 84KB - Virtual size: 83KB

.Lz
Size: 12KB - Virtual size: 12KB

.GU
Size: 3KB - Virtual size: 42KB

.bEMY
Size: 86KB - Virtual size: 85KB

.data
Size: 15KB - Virtual size: 212KB

.Eo
Size: 3KB - Virtual size: 383KB

.rsrc
Size: 9KB - Virtual size: 8KB

.reloc
Size: 1024B - Virtual size: 1024B