JaffaCakes118_6869ab9b7eed079e081d725895f529b2

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_6869ab9b7eed079e081d725895f529b2
Size

163KB
MD5

6869ab9b7eed079e081d725895f529b2
SHA1

eb8f171c44a91848259933e6f489d8e06f271a11
SHA256

107e88a38db94003b3ccbb3c7486b3ac86ce76e87385eb0871a0191a52d818be
SHA512

44db1f2a2286782f09cd45d9b7057d8a9855d35e4359a0dd9a8755e7d2e4bc53a71ac47756ca3875076d6294371da79b88eca9757c9e582c527a6a7a2c048d70
SSDEEP

3072:adjuVLgf5ymKq40/z09YPab2cN5C4d0iKqZHq:QQgfX40/z/PQi4d0i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6869ab9b7eed079e081d725895f529b2

Files

JaffaCakes118_6869ab9b7eed079e081d725895f529b2
.exe windows:4 windows x86 arch:x86

a452e27c650e00b2c9e6d0e6f8fb8e85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextChangeNotification
DeleteCriticalSection
InterlockedIncrement
GlobalLock
SetFileAttributesW
GetPrivateProfileIntW
GetFileAttributesW
CreateThread
GetLocaleInfoW
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
ReplaceFileW
WideCharToMultiByte
LockResource
ResumeThread
SetThreadPriority
lstrcmpW
GlobalSize
GetProcessId
QueryPerformanceCounter
lstrcpynW
CloseHandle
GetVersion
GetLastError
FindFirstChangeNotificationW
GetVersionExW
LoadLibraryExW
GetThreadLocale
GetTickCount
FindCloseChangeNotification
LoadLibraryW
EnumResourceTypesA
GetVersionExA
FindResourceW
GetPrivateProfileStringW
GetModuleHandleW
lstrcpyW
GetCurrentThreadId
ExitProcess
GetCurrentDirectoryW
LocalFree
DeleteFileW
InitializeCriticalSection
FreeLibrary
GetModuleFileNameW
InterlockedDecrement
MulDiv
MultiByteToWideChar
lstrlenW
LoadResource
GetProcAddress
Sleep
GlobalFree
FindClose
WaitForSingleObject
FileTimeToSystemTime
LoadLibraryA
GlobalUnlock
WritePrivateProfileStringW
FindFirstFileW
GlobalAlloc
InterlockedExchange
GetACP
GetCurrentProcessId

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

shell32

SHGetDesktopFolder
SHGetPathFromIDListW
SHGetMalloc
SHGetSpecialFolderLocation
SHAppBarMessage
ShellExecuteExW
ShellExecuteW
SHBrowseForFolderW
DragAcceptFiles
SHGetFileInfoW
Shell_NotifyIconW

comctl32

ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Add
ImageList_Destroy
InitCommonControlsEx
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_GetImageCount
_TrackMouseEvent
ImageList_AddMasked
PropertySheetW
ImageList_Draw

gdi32

GetBkColor
SetPixelV
Rectangle
GetTextExtentPoint32W
CreateDIBSection

advapi32

RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegEnumValueW
RegOpenKeyW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey

user32

ShowWindow
SystemParametersInfoW
IsChild
LoadImageW
IsMenu
SetParent
CloseWindow
EnableWindow
mouse_event
CreateCaret
LockWindowUpdate
DrawFrameControl
GrayStringW
GetMenuDefaultItem
wsprintfW
GetDlgCtrlID
DrawIconEx
GetNextDlgTabItem
DrawTextExW
UnionRect
EndDeferWindowPos
SetMenuDefaultItem
FindWindowW
SetClipboardData
GetIconInfo
GetForegroundWindow
LoadIconW
IntersectRect
GetWindowPlacement
SetWindowPos
MapVirtualKeyExW
SetWindowsHookExW
IsWindow
CloseClipboard
LoadBitmapW
AppendMenuW
TrackPopupMenu
GetScrollPos
DeleteMenu
TranslateMessage
UpdateWindow
GetDC
GetWindow
SetMenu
InflateRect
SendMessageW
GetWindowTextW
BringWindowToTop
GetMenuItemInfoW
GetMessageW
DrawEdge
EnableMenuItem
GetScrollInfo
GetClassNameW
GetSysColorBrush
GetSysColor
PeekMessageW
LoadCursorW
CopyRect
GetKeyNameTextW
GetMenu
IsRectEmpty
SetCursorPos
GetFocus
GetWindowRect
GetMenuItemCount
GetClassLongW
SetFocus
ReleaseCapture
EmptyClipboard
EnableScrollBar
SetCursor
PtInRect
FillRect
IsIconic
ShowCaret
GetLastActivePopup
ShowScrollBar
GetParent
GetTabbedTextExtentW
RedrawWindow
CopyIcon
GetKeyState
TabbedTextOutW
CheckMenuItem
GetKeyboardLayout
RegisterClipboardFormatW
PostMessageW
SetWindowRgn
GetCursor
MapWindowPoints
IsCharLowerW
WindowFromPoint
DrawTextW
SetForegroundWindow
SetWindowLongW
CopyAcceleratorTableW
DrawIcon
GetCapture
ReleaseDC
DrawAnimatedRects
GetSystemMenu
UnhookWindowsHookEx
SetRect
SetScrollInfo
IsWindowVisible
MessageBeep
GetClientRect
DrawStateW
GetSubMenu
DestroyWindow
HideCaret
DragDetect
MapVirtualKeyW
DestroyAcceleratorTable
CallWindowProcW
InvalidateRect
SetCapture
DestroyCursor
SetScrollPos
ClientToScreen
RegisterWindowMessageW
GetMenuItemID
CreatePopupMenu
CallNextHookEx
GetClipboardData
OpenClipboard
GetCursorPos
GetDCEx
OffsetRect
IsClipboardFormatAvailable
SystemParametersInfoA
LoadMenuW
CreateIconIndirect
SetCaretPos
EqualRect
BeginDeferWindowPos
GetWindowLongW
KillTimer
SetRectEmpty
DestroyCaret
IsZoomed
SetTimer
GetMenuState
GetDlgItem
ScreenToClient
GetDesktopWindow
DestroyIcon
MoveWindow
SetActiveWindow
DispatchMessageW
DeferWindowPos
InsertMenuW
EnumChildWindows
GetMessagePos
CreateAcceleratorTableW
DrawFocusRect
GetSystemMetrics
GetActiveWindow
DestroyMenu

ole32

DoDragDrop
CoCreateInstance
OleRun

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a452e27c650e00b2c9e6d0e6f8fb8e85

Headers

File Characteristics

Imports

kernel32

gdiplus

shell32

comctl32

gdi32

advapi32

user32

ole32

Sections

.text Size: 92KB - Virtual size: 92KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 62KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 92KB - Virtual size: 92KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 62KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 92KB