JaffaCakes118_b358268c72e11b21236c4e804096f402

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_b358268c72e11b21236c4e804096f402
Size

148KB
MD5

b358268c72e11b21236c4e804096f402
SHA1

ad9375e6fc6a90b2d96512b940bb9b0334727f08
SHA256

7ddca19b796238bede6b057d060bc7c3fb1d4a5e5af2d2b2138500fe3c3081df
SHA512

8d02b6dd4e38354852d1c390c87886cc33c50b840f9d9ae825c2f5d4429f1da065157ed1a543095489e1547c5eb0eb2dc9f385b5cb6b8193bcf715b7146cc8eb
SSDEEP

3072:BvXEDlr2riTbKd36KzmL4q6b5p0MEXEi2pgOyWEpjx7V:BvXEDF2ryb+Y4RvinnWE3V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_b358268c72e11b21236c4e804096f402

Files

JaffaCakes118_b358268c72e11b21236c4e804096f402
.exe windows:4 windows x86 arch:x86

90a5d83a1797da7e3b0f1ec7bf35231a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenMutexA
GetPrivateProfileStringA
GetModuleFileNameA
GetModuleHandleA
LoadLibraryA
GetACP
ExitThread
ResetEvent
CreateEventA
Beep
SetEvent
CreateThread
FreeLibrary
GetProcAddress
CopyFileA
lstrcpynA
lstrcpyA
GetWindowsDirectoryA
WinExec
GetSystemDirectoryA
OpenFileMappingA
DeviceIoControl
UnmapViewOfFile
MapViewOfFile
GetVersionExA
lstrcatA
ReleaseMutex
CreateMutexA
WaitForSingleObject
CreateFileA
CloseHandle
Sleep
DefineDosDeviceA
DeleteFileA
MoveFileExA
GetStringTypeW
GetVersion
GetCommandLineA
LCMapStringW
LCMapStringA
GetStringTypeA
GetCurrentProcessId
ExitProcess
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetLastError
CreateSemaphoreA
OpenSemaphoreA
ReleaseSemaphore
GetStartupInfoA
IsBadWritePtr
GetEnvironmentStrings
GetEnvironmentStringsW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte

user32

DispatchMessageA
TranslateMessage
GetMessageA
PostMessageA
ShowWindow
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadStringA
SystemParametersInfoA
GetSystemMetrics
SetSystemCursor
SendMessageA
FindWindowA
mouse_event
PostQuitMessage
DefWindowProcA
DestroyWindow
RegisterWindowMessageA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

gdi32

DeleteDC
ExtEscape
CreateDCA
GetDeviceCaps

shell32

ShellExecuteA

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Beep95_S
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.urdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

90a5d83a1797da7e3b0f1ec7bf35231a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

shell32

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 9KB

Beep95_S Size: 4KB - Virtual size: 4B

.rsrc Size: 8KB - Virtual size: 6KB

.urdata Size: 68KB - Virtual size: 68KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 9KB

Beep95_S
Size: 4KB - Virtual size: 4B

.rsrc
Size: 8KB - Virtual size: 6KB

.urdata
Size: 68KB - Virtual size: 68KB