JaffaCakes118_2f06a9e9f2b95ec354de408e191f30b0

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_2f06a9e9f2b95ec354de408e191f30b0
Size

163KB
MD5

2f06a9e9f2b95ec354de408e191f30b0
SHA1

83b7f572a71faef00bab6ecf23f613144d7311d8
SHA256

0dc9b892d882d07cdab64979f208a1b993ee2f493843b5d84ec8102b42617ef1
SHA512

a3d90f4b7adff0e2110dbfe884d953d099ca8c27684380bc82e902a21cc346cd0c767da1074121c21bf4aa844dffa466e48c2f6dbd3f262955bcb105861fd672
SSDEEP

3072:w/ILkyh3CWLBmWJn6ujRcFhUku+vp7cYrfnDQeXtiyCwkcvUghZlL:wAx1CHIcIk5fjXtXCYt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_2f06a9e9f2b95ec354de408e191f30b0

Files

JaffaCakes118_2f06a9e9f2b95ec354de408e191f30b0
.exe windows:4 windows x86 arch:x86

77de037be04f565e6e5596fd916688c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderPathW

gdi32

SetWindowExtEx
GetDeviceCaps
ScaleViewportExtEx
DeleteObject
CreateBitmap
TextOutW
ScaleWindowExtEx
RestoreDC
PtVisible
RectVisible
OffsetViewportOrgEx
SelectObject
SaveDC
SetViewportExtEx
DeleteDC
GetClipBox
SetViewportOrgEx
SetBkColor
SetTextColor
Escape
ExtTextOutW
SetMapMode
GetStockObject

advapi32

RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shlwapi

PathAppendW
PathFindFileNameW
PathFileExistsW
PathFindExtensionW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

kernel32

GetEnvironmentStrings
VirtualProtect
GetCurrentProcess
GetShortPathNameA
TerminateProcess
GetTickCount
HeapCreate
GetCPInfo
VirtualQuery
GetStringTypeA
GetSystemInfo
IsBadReadPtr
FreeEnvironmentStringsW
WriteFile
GetStringTypeW
GetProcessAffinityMask
SetHandleCount
GetOEMCP
SetFilePointer
IsBadWritePtr
GetEnvironmentStringsW
IsBadCodePtr
LCMapStringA
VirtualFree
RtlUnwind
EnumResourceTypesW
GetCommandLineA
GetModuleFileNameA
GetStartupInfoA
QueryPerformanceCounter
HeapFree
HeapAlloc
GetStdHandle
VirtualAlloc
LCMapStringW
GetFileAttributesA
HeapSize
GetCurrentProcessId
HeapDestroy
SetStdHandle
HeapReAlloc
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetFileType
FlushFileBuffers
SetUnhandledExceptionFilter
ExitProcess

user32

GetWindowLongW
MessageBoxW
GetWindowTextW
LoadCursorW
EnableMenuItem
LoadBitmapW
ModifyMenuW
CheckMenuItem
GetDC
IsWindowEnabled
ReleaseDC
GetSysColor
GetMenuCheckMarkDimensions
GetLastActivePopup
GetSystemMetrics
EnableWindow
GetParent
GetSysColorBrush

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Sections

.text
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77de037be04f565e6e5596fd916688c8

Headers

File Characteristics

Imports

shell32

gdi32

advapi32

shlwapi

winspool.drv

kernel32

user32

ole32

Sections

.text Size: 94KB - Virtual size: 94KB

.rdata Size: 3KB - Virtual size: 2KB

.bss Size: 64KB - Virtual size: 63KB

.tls Size: 1024B - Virtual size: 104KB

.text
Size: 94KB - Virtual size: 94KB

.rdata
Size: 3KB - Virtual size: 2KB

.bss
Size: 64KB - Virtual size: 63KB

.tls
Size: 1024B - Virtual size: 104KB