JaffaCakes118_1fbb98967ddb098d1ed354cfd4e24f67

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_1fbb98967ddb098d1ed354cfd4e24f67
Size

295KB
MD5

1fbb98967ddb098d1ed354cfd4e24f67
SHA1

7e21c68fbbf40b6caf3feca51a4487a5a764633d
SHA256

00969753f03e6bfe4793f7ddcb3b8d8edb1ab9058e568e727974e05767317e79
SHA512

7361cffc849a295d2df0af626a77d865b46f351a36fdfb97c6ec7706769a3ae2bb7ef53ffba80ced8e69cba59375b225d6ebe2df52ae64276285862750ee6b47
SSDEEP

6144:c34unyy/yTfmzp8Qc6BKkbhfrYheUTfcpxHxygLD208qHUz:Oyi/bdO94v5LD20zHW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1fbb98967ddb098d1ed354cfd4e24f67

Files

JaffaCakes118_1fbb98967ddb098d1ed354cfd4e24f67
.exe windows:4 windows x86 arch:x86

9044146d006e74da64cfb56db170932a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
RemoveDirectoryW
GetWindowsDirectoryW
SystemTimeToFileTime
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
CreateDirectoryW
ExpandEnvironmentStringsA
GetSystemTime
GetLocalTime
CreateEventW
WaitForSingleObject
lstrcmpW
CompareFileTime
lstrcmpiW
FindResourceW
LoadResource
FreeLibrary
MoveFileW
FileTimeToSystemTime
GetTimeFormatW
GetDateFormatW
lstrcpynW
GetModuleHandleW
lstrlenW
lstrlenA
LocalFree
GetVersion
GetProcAddress

user32

GetSysColorBrush
RemoveMenu
GetSubMenu
GetSysColor
LoadCursorW
GetFocus
IsWindow
SetTimer
InvalidateRect
GetCursorPos
RegisterWindowMessageW
GetTopWindow
MoveWindow
GetForegroundWindow
PeekMessageW
GetMenuState
GetMenuItemCount
AppendMenuW
LoadBitmapW
CreatePopupMenu
GetDesktopWindow
EnableWindow
SendMessageW
SetWindowPos
SetDlgItemTextW
GetSystemMetrics
CreateDialogParamW
DestroyIcon
EnableMenuItem
PostMessageW
CopyRect
GetMenuItemInfoW
CreateMenu
GetMenuItemID

gdi32

CreateCompatibleDC
CreateFontIndirectW
CreatePen
CreateRectRgn
CreateHatchBrush
CreateDIBSection
DeleteObject
CreatePatternBrush
CreateSolidBrush

advapi32

RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW

comctl32

ImageList_GetIconSize

uxtheme

GetThemeFont
GetThemeSysColor
CloseThemeData
IsThemeActive
GetThemeDocumentationProperty
GetThemeSysFont

kbdgr

KbdLayerDescriptor

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.OcIlYE
Size: 2KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qM
Size: 1024B - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.C
Size: 2KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.l
Size: 3KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Qb
Size: 2KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xHxtr
Size: 5KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tDMV
Size: 96KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.GHnGe
Size: 3KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zersbc
Size: 116KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.blRIHU
Size: 2KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9044146d006e74da64cfb56db170932a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

uxtheme

kbdgr

Sections

.text Size: 18KB - Virtual size: 18KB

.OcIlYE Size: 2KB - Virtual size: 278KB

.qM Size: 1024B - Virtual size: 156KB

.C Size: 2KB - Virtual size: 485KB

.rdata Size: 3KB - Virtual size: 24KB

.l Size: 3KB - Virtual size: 67KB

.Qb Size: 2KB - Virtual size: 600KB

.xHxtr Size: 5KB - Virtual size: 266KB

.tDMV Size: 96KB - Virtual size: 101KB

.GHnGe Size: 3KB - Virtual size: 532KB

.data Size: 7KB - Virtual size: 187KB

.zersbc Size: 116KB - Virtual size: 196KB

.blRIHU Size: 2KB - Virtual size: 158KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 18KB - Virtual size: 18KB

.OcIlYE
Size: 2KB - Virtual size: 278KB

.qM
Size: 1024B - Virtual size: 156KB

.C
Size: 2KB - Virtual size: 485KB

.rdata
Size: 3KB - Virtual size: 24KB

.l
Size: 3KB - Virtual size: 67KB

.Qb
Size: 2KB - Virtual size: 600KB

.xHxtr
Size: 5KB - Virtual size: 266KB

.tDMV
Size: 96KB - Virtual size: 101KB

.GHnGe
Size: 3KB - Virtual size: 532KB

.data
Size: 7KB - Virtual size: 187KB

.zersbc
Size: 116KB - Virtual size: 196KB

.blRIHU
Size: 2KB - Virtual size: 158KB

.rsrc
Size: 31KB - Virtual size: 30KB