JaffaCakes118_f89ddb86d7a54a351a6e2f542c7170eb

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_f89ddb86d7a54a351a6e2f542c7170eb
Size

298KB
MD5

f89ddb86d7a54a351a6e2f542c7170eb
SHA1

787c05c24c969ba6907b8b411a3c26024c980770
SHA256

b31bfa231769a79953bcf1e1297843c4f76cef0d84aa384a349a8157a334079f
SHA512

87043dc3814b49c4c276de07bd00f87050110695cf5e003ffc3e27eb8f0f5a722091453451c6a10aa483cabedb1f4aee50c932fc969162105d8b2e87b8a2860c
SSDEEP

6144:g5MUn5CwuC/e84hsjZnjAFcI2u3dTNx0vMGEDI5BSqyYrn/911u:gj0w1RA23u3dTNKkNI5VTF7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_f89ddb86d7a54a351a6e2f542c7170eb

Files

JaffaCakes118_f89ddb86d7a54a351a6e2f542c7170eb
.exe windows:4 windows x86 arch:x86

9a00cd2dc42f79ba749542739a25a8b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocString
SysFreeString

msimg32

GradientFill
AlphaBlend

gdi32

SetTextJustification
LineTo
SetBkColor
GetTextMetricsW
GetObjectW
GetTextExtentPoint32W
SetBkMode
SelectObject
FillRgn
SetStretchBltMode
GetDeviceCaps
SetPixel
BitBlt
CreateCompatibleBitmap
GetStockObject
FrameRgn
GetDIBits
Polygon
CreateFontIndirectW
GetPixel
CreateDIBSection
CombineRgn
DeleteDC
TextOutW
DeleteObject
GetTextFaceW
CreateCompatibleDC
CreateRoundRectRgn
MoveToEx
CreateSolidBrush
CreatePen
StretchBlt
CreatePolygonRgn
ExcludeClipRect
SetTextColor
CreateRectRgn
GetTextColor

shlwapi

PathFindFileNameW

kernel32

OpenEventW
LocalUnlock
WriteFile
LoadResource
CreateMutexW
CreateFileW
OutputDebugStringW
ReleaseMutex
IsDebuggerPresent
ResetEvent
LocalLock
lstrlenW
CreateFileMappingW
lstrlenA
WideCharToMultiByte
CreateEventW
SetUnhandledExceptionFilter
FindClose
VirtualQuery
MapViewOfFile
SetFilePointer
GetCurrentThreadId
EnterCriticalSection
CreateThread
FreeLibrary
LocalAlloc
FindFirstFileW
GetSystemTimeAsFileTime
WaitForMultipleObjects
GetLocalTime
lstrcpyW
LeaveCriticalSection
WaitForSingleObject
OpenFileMappingW
LocalFree
LockResource
FindNextFileW
GetModuleHandleW
DeleteFileW
OpenMutexW
SetFileAttributesW
CloseHandle
WinExec
SetLastError
DeleteCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
FindResourceW
TlsAlloc
VirtualAllocEx

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorW
InitializeSecurityDescriptor
LookupAccountNameW
CryptGenRandom
SetSecurityDescriptorDacl
RegCreateKeyExW
RegQueryValueExW
RegQueryValueW
GetUserNameW
ConvertSidToStringSidW
FreeSid
RegCloseKey
SetEntriesInAclW
RegSetValueExW
CryptReleaseContext
GetSecurityDescriptorSacl
CryptAcquireContextW
AllocateAndInitializeSid
RegOpenKeyExW
SetSecurityDescriptorSacl

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance

comctl32

_TrackMouseEvent
ImageList_DrawEx
ImageList_GetIconSize
ord17

user32

IsWindowVisible
GetSysColorBrush
RemovePropW
SystemParametersInfoW
GetSystemMetrics
GetParent
SetLayeredWindowAttributes
GetDlgItem
RegisterWindowMessageW
GetWindowLongW
SetWindowPos
FillRect
ReleaseDC
LoadBitmapW
SetTimer
SetWindowRgn
SendMessageW
LoadImageW
DestroyWindow
GetWindowRect
GetKeyState
InvalidateRect
GetClientRect
GetMessagePos
GetPropW
GetFocus
PtInRect
GetClassInfoW
SetPropW
GetDesktopWindow
ScreenToClient
KillTimer
GetDC
CreateWindowExW
MsgWaitForMultipleObjectsEx
BringWindowToTop
GetWindowDC
DefWindowProcW
FindWindowW
GetIconInfo
DestroyIcon
EnableWindow
SetWindowLongW
SetCursor
ClientToScreen
CreateIconIndirect
RedrawWindow
IsWindow
MapDialogRect
GetCursor
AttachThreadInput
WindowFromPoint
GetWindowPlacement
SetFocus
DrawTextW
PostMessageW
GetAncestor
CopyRect
GetSysColor
GetWindowTextW
GetCursorPos
UpdateWindow
SetRect
LoadIconW
CopyImage
MessageBeep
OffsetRect
PeekMessageW
FrameRect
DrawFocusRect
CallWindowProcW
IntersectRect
GetWindowThreadProcessId
GetForegroundWindow
LoadCursorW
InflateRect
SetForegroundWindow
GetMenuItemInfoA
MessageBoxIndirectW
RegisterClassExW
InvalidateRgn
GetCaretPos
MonitorFromRect
WaitForInputIdle
CreateDialogIndirectParamW
GetSubMenu
TrackPopupMenuEx
GetMenuItemCount
MessageBoxIndirectA
WinHelpA
UpdateLayeredWindow
IsDlgButtonChecked
DialogBoxParamW
CharUpperA
DestroyMenu
IsMenu
RegisterClassExA

shell32

SHCreateDirectoryExW
ShellExecuteW
SHGetFolderPathW

dpnhpast

DllGetClassObject
DllCanUnloadNow
DllRegisterServer

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 258KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a00cd2dc42f79ba749542739a25a8b3

Headers

File Characteristics

Imports

oleaut32

msimg32

gdi32

shlwapi

kernel32

advapi32

ole32

comctl32

user32

shell32

dpnhpast

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 258KB - Virtual size: 1.1MB

.rdata Size: 6KB - Virtual size: 5KB

.rsrc Size: 9KB - Virtual size: 29KB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 258KB - Virtual size: 1.1MB

.rdata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 9KB - Virtual size: 29KB