JaffaCakes118_a7b1fcbf37a662b5056dc92516cd07d4

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_a7b1fcbf37a662b5056dc92516cd07d4
Size

245KB
MD5

a7b1fcbf37a662b5056dc92516cd07d4
SHA1

025d5890ff775ab81ca9c22921b465cd8346e3a3
SHA256

8904c43ee8c6735b5fd4a94e9d28d60f92c41b7a986a133efc2a312bfc8d2cd8
SHA512

7dd7547e4edf12e47791fd6b3efa32cf34df5bd134cc053854fcb3630e22e15b211469eb1d4f32e8b7f12b599427a963c686fc27ceba7b607de653740c56ac4b
SSDEEP

6144:KApjlcK3jvdByYKvXMlDLMjwuGR0Ournll0dXbpFmJ:xjlJ3r3i8hLMj9GyxDlQXFFe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a7b1fcbf37a662b5056dc92516cd07d4

Files

JaffaCakes118_a7b1fcbf37a662b5056dc92516cd07d4
.exe windows:4 windows x86 arch:x86

333c18068e9b1bb91e230f1d7db14470

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
lstrlenW
GetFileAttributesW
lstrcpynA
lstrlenA
GetFullPathNameA
GetFileAttributesA
lstrcpynW
FreeLibrary
MultiByteToWideChar
GetModuleHandleW
LoadLibraryW
GetLastError
GetLogicalDriveStringsW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetCurrentProcess
GetVersionExW
LocalFree
LocalAlloc
GetTickCount
GetModuleFileNameW
lstrcmpA
GetProcAddress
LoadLibraryA

user32

PostMessageW
InvalidateRect
SetForegroundWindow
DestroyIcon
LoadImageW
GetCursorPos
EnableWindow
IsWindow
SendMessageW
GetDCEx
FindWindowW
IsMenu
SetWindowPos
SetWindowTextW
DialogBoxParamW
ShowCaret
SetWindowRgn
WinHelpW
EndMenu
GetActiveWindow
EndDialog
GetWindowRgn
CreateWindowExA
MessageBoxW
LoadMenuIndirectA
CharNextA
GetKeyboardType
GetSubMenu
RegisterClassW
SendDlgItemMessageA
EnumClipboardFormats
MoveWindow
SetDlgItemTextW
LoadMenuW
SetTimer
LoadMenuA
GetMenuItemCount
GetClassInfoW
LoadCursorA
UpdateLayeredWindow

gdi32

CreateCompatibleDC
CreateSolidBrush
DeleteObject
UpdateICMRegKeyW
SetWinMetaFileBits
StretchDIBits
CreateMetaFileA
CreateEllipticRgn
GetMetaFileW
CreateRoundRectRgn
GdiGetBatchLimit
CreateColorSpaceW

advapi32

RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyW
RegSetValueExW
RegDeleteKeyW
RegDeleteKeyA

shell32

SHGetDesktopFolder

resutils

ResUtilGetSzProperty
ResUtilGetPropertiesToParameterBlock

Sections

CODE
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sNCiX
Size: 104KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ucXcrq
Size: 108KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

333c18068e9b1bb91e230f1d7db14470

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

resutils

Sections

CODE Size: 3KB - Virtual size: 2KB

.edata Size: 13KB - Virtual size: 16KB

.rdata Size: 3KB - Virtual size: 17KB

.sNCiX Size: 104KB - Virtual size: 153KB

.data Size: 5KB - Virtual size: 360KB

.ucXcrq Size: 108KB - Virtual size: 194KB

.rsrc Size: 6KB - Virtual size: 6KB

CODE
Size: 3KB - Virtual size: 2KB

.edata
Size: 13KB - Virtual size: 16KB

.rdata
Size: 3KB - Virtual size: 17KB

.sNCiX
Size: 104KB - Virtual size: 153KB

.data
Size: 5KB - Virtual size: 360KB

.ucXcrq
Size: 108KB - Virtual size: 194KB

.rsrc
Size: 6KB - Virtual size: 6KB