JaffaCakes118_2479c1afc2cee7ef6bb7768811208f18

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_2479c1afc2cee7ef6bb7768811208f18
Size

252KB
MD5

2479c1afc2cee7ef6bb7768811208f18
SHA1

344a86c2df80c2db23811c99f754993e657bd395
SHA256

81eacffc2b96548ca3d9ae1eedfde306bbe063770125a5658241e3ba20fb1ed4
SHA512

884b1c484ff14e27f2458d6eed4f87be721cd480fcd999eace0bf3d2e5ea02ef9c5c47652943ada76a635fa07bf5b3de7bfe9089a098226a61067bd7bca00f1d
SSDEEP

6144:XC/Md2NqGQ+NmMrJ1EOxhK+5Sd+h9Q1hwawZ:Sk0vQ+NhJV5SUQ1aaw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_2479c1afc2cee7ef6bb7768811208f18

Files

JaffaCakes118_2479c1afc2cee7ef6bb7768811208f18
.exe windows:4 windows x86 arch:x86

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
GlobalAlloc
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
GetLogicalDriveStringsW
GetVersion
InitializeCriticalSection
WaitForSingleObject
lstrlenA
GetModuleHandleW
LoadLibraryW
GetLastError
LocalFree
GetModuleFileNameW
LocalAlloc
SetUnhandledExceptionFilter
QueryPerformanceCounter
lstrcpynA
GetVersionExW
GetCurrentThread
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
Sleep
SetEvent
GetVersionExA
GetThreadLocale
GetLocaleInfoA
WaitForMultipleObjects
GetACP
lstrcmpW
GetProcAddress
LoadLibraryA

user32

PostMessageW
EnableWindow
LoadImageW
IsWindow
CheckMenuItem
EnableMenuItem
GetSubMenu
LoadMenuW
LoadCursorW
SetCursor
LoadIconW
GetCursorPos
SendMessageW
DestroyIcon
InvalidateRect
GetSystemMetrics
SetForegroundWindow
RegisterWindowMessageW
SetWindowTextW
CharUpperW
MessageBoxW
AppendMenuA
TrackPopupMenu
WinHelpW
CreateDesktopA
EndMenu
DialogBoxParamA
GetForegroundWindow
WinHelpA
PeekMessageW
DialogBoxIndirectParamA
SendDlgItemMessageW
wvsprintfA
MonitorFromRect
MessageBoxIndirectA
GetCapture
GetDCEx

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteObject
AddFontResourceA
SetWinMetaFileBits
ExtCreateRegion
CreatePolyPolygonRgn
CreatePatternBrush
CreateFontIndirectW
RemoveFontResourceA
CreateBitmap
GetTextExtentPointW

advapi32

EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegDeleteKeyW
RegDeleteKeyA
FreeSid
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegDeleteValueW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
LookupAccountSidW
AllocateAndInitializeSid

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconExW

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime

netapi32

NetReplGetInfo
NetUseGetInfo

Sections

.icode
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Gxrxi
Size: 105KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.muIJdp
Size: 108KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27ec24c061c3ca926ec556b795d3d8d8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

oleaut32

netapi32

Sections

.icode Size: 8KB - Virtual size: 8KB

CODE Size: 11KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 16KB

.Gxrxi Size: 105KB - Virtual size: 141KB

.data Size: 5KB - Virtual size: 362KB

.muIJdp Size: 108KB - Virtual size: 176KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1KB - Virtual size: 4KB

.icode
Size: 8KB - Virtual size: 8KB

CODE
Size: 11KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 16KB

.Gxrxi
Size: 105KB - Virtual size: 141KB

.data
Size: 5KB - Virtual size: 362KB

.muIJdp
Size: 108KB - Virtual size: 176KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1KB - Virtual size: 4KB