JaffaCakes118_38d0284f390540324bad53f4fd6a723c

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_38d0284f390540324bad53f4fd6a723c
Size

192KB
MD5

38d0284f390540324bad53f4fd6a723c
SHA1

205654b5fe6e8ea6379fb0c02ac801515e9124ed
SHA256

0fe6a7d56da95f7fc6941f1a0ca462c2be1524bb2a999e5909bed73deeed7459
SHA512

732095c4ad9e541931f83113b26d28bf8e9059a5a4ba03c8be866b9df6abd469504995b49e08cd1183a785b77a76fc23daa6ee687e79c3a84000b0fc04bf6e46
SSDEEP

3072:SWtfAwfqNrriq/WkhtqLkiWWxw7R/zr/FJt/XqDXdl+sPT9troqn:XXqJriG7htgT0BJJtCdQsb9tr/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_38d0284f390540324bad53f4fd6a723c

Files

JaffaCakes118_38d0284f390540324bad53f4fd6a723c
.exe windows:4 windows x86 arch:x86

5b7e6701ae497145050016af35a6dec0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetWorldTransform
GetGraphicsMode
ExtCreatePen
SelectClipPath
CreateDCW
StretchDIBits
StretchBlt
RealizePalette
GetDIBColorTable
GetViewportOrgEx
SetMiterLimit
GetCurrentObject
GetDeviceCaps
CreateRectRgn
CloseFigure
CreateBitmap
CreatePatternBrush
BitBlt
CreatePolyPolygonRgn
CreatePalette
ResetDCW
LineTo
DeleteObject
Rectangle
AbortDoc
StrokePath
RestoreDC
CombineRgn
EndPath
MoveToEx
CreateICW
ModifyWorldTransform
GetObjectA
CreateCompatibleBitmap
PolylineTo
StartDocW
OffsetRgn
SetDIBits
CreateBrushIndirect
ExtEscape
GetRgnBox
EndDoc
IntersectClipRect
GetRegionData
PolyBezierTo
CreateDIBSection
GetClipBox
FillPath
StartPage
DeleteDC
SelectObject
SelectClipRgn
SetBrushOrgEx
EndPage
SetWorldTransform
SetROP2
Escape
GetStockObject
SetPolyFillMode
SetStretchBltMode
BeginPath
SetGraphicsMode
SaveDC
SelectPalette
CreateCompatibleDC
EqualRgn
ExtSelectClipRgn
PatBlt
PolyDraw

kernel32

GetTimeFormatW
LeaveCriticalSection
ExitProcess
CreateFileA
GetCurrentProcessId
GetCalendarInfoW
Sleep
IsProcessorFeaturePresent
GetModuleHandleA
InterlockedExchange
ReleaseMutex
GetEnvironmentVariableW
GetDateFormatA
GetDateFormatW
SetCurrentDirectoryA
TlsSetValue
InterlockedCompareExchange
UnhandledExceptionFilter
GetCurrentThreadId
FindClose
LocalAlloc
GetCurrentProcess
InterlockedIncrement
GetTimeFormatA
GetSystemInfo
ReleaseSemaphore
GlobalAlloc
EnterCriticalSection
GetFileTime
WideCharToMultiByte
FindNextFileA
TerminateProcess
EnumResourceNamesA
SetThreadPriority
DeleteCriticalSection
GetLocalTime
SetUnhandledExceptionFilter
TlsFree
MultiByteToWideChar
GetVersionExA
ReadFile
GlobalFree
GetUserDefaultLangID
FindFirstFileA
GetLastError
GetThreadPriority
GetSystemDefaultLCID
CloseHandle
InitializeCriticalSection
GetCurrentThread
lstrlenW
GlobalLock
DeleteFileW
GetTempPathW
CreateSemaphoreA
GetSystemDirectoryA
GetModuleFileNameA
GetACP
GetFileSize
GetWindowsDirectoryA
GlobalSize
GetCurrentDirectoryA
IsDebuggerPresent
FreeLibrary
GetProcAddress
lstrcmpW
GetThreadLocale
WaitForSingleObject
GetLocaleInfoA
CreateMutexA
GetTickCount
QueryPerformanceCounter
LoadLibraryA
TlsGetValue
GetProfileStringW
GlobalUnlock
GetSystemTimeAsFileTime
RaiseException

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegSetValueExA

msimg32

AlphaBlend

shlwapi

PathRemoveFileSpecA
PathAppendA

ole32

CoCreateInstance
CoInitialize
OleFlushClipboard
CoRevokeClassObject
CoGetProcessIdentifier
OleInitialize
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
OleUninitialize
StgCreateDocfileOnILockBytes
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
CoGetClassObject
OleIsCurrentClipboard
CLSIDFromProgID
CLSIDFromString

user32

OffsetRect
SetWindowPos
GetDC
GetDesktopWindow
GetSystemMetrics
GetClientRect
GetActiveWindow
MonitorFromWindow
DestroyWindow
RegisterClassA
DefWindowProcA
CreateWindowExA
EnumDisplayMonitors
ScrollWindowEx
ReleaseDC
GetWindowRect
MonitorFromPoint
WindowFromDC
LoadCursorA
GetMonitorInfoA
SetActiveWindow
CharNextW
LoadIconA
UnregisterClassA

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b7e6701ae497145050016af35a6dec0

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

msimg32

shlwapi

ole32

user32

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 77KB - Virtual size: 76KB

.edata Size: 1024B - Virtual size: 112KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 77KB - Virtual size: 76KB

.edata
Size: 1024B - Virtual size: 112KB