JaffaCakes118_75045953bb3ec7b4b2bacc616d592d3d

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_75045953bb3ec7b4b2bacc616d592d3d
Size

316KB
MD5

75045953bb3ec7b4b2bacc616d592d3d
SHA1

fc4afeba262ca7e4fb0f43f62952c3e08fb21abc
SHA256

67731e14b3a4d6ee413b726aebe6714116fe65ee559f3106fcdc37fb7d25cf43
SHA512

47d49d40f7b7fb2d47e04a17b2078cf53beb7bf1b6b4df28667e0fefc036789b804fde5574266112b750c55acacf97f49858830969e7736955272a31cac0d3a3
SSDEEP

6144:bE7QzjbxRqkBIoC3gc3ZIZCOkHS5Ezd13UIhoPfpHTLa6LiOE:bE7IjbfqkL4pI2y5e3RGpCR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_75045953bb3ec7b4b2bacc616d592d3d

Files

JaffaCakes118_75045953bb3ec7b4b2bacc616d592d3d
.exe windows:5 windows x86 arch:x86

3cd34457fd00d96da1e5e564e0973e53

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

gdi32

GetTextExtentExPointW
LPtoDP
CreateCompatibleBitmap
SetBkMode
CreateFontIndirectW
Polyline
StretchDIBits
GetDeviceCaps
DeleteObject
GetMapMode
GetTextExtentPoint32W
BitBlt
SetViewportOrgEx
RestoreDC
SaveDC
CreateSolidBrush
SetMapMode
PtInRegion
SelectClipRgn
GetTextMetricsW
CreateRectRgn
SetTextAlign
DPtoLP
DeleteDC
ExcludeClipRect
CreateCompatibleDC
GetViewportOrgEx
CreateEllipticRgn
SetBkColor
CreatePen
CombineRgn
CreatePolygonRgn
IntersectClipRect
SelectObject
GetObjectW

user32

GetDC
GetFocus
ReleaseCapture
DestroyMenu
CharPrevA
GetKeyState
MessageBeep
GetClipboardData
InvalidateRect
ShowScrollBar
RegisterWindowMessageW
SetClipboardData
LoadBitmapW
LoadCursorW
IntersectRect
PostMessageW
GetKeyboardState
GetWindowLongW
KillTimer
DrawFrameControl
CloseClipboard
ShowWindow
HideCaret
GetAsyncKeyState
TrackPopupMenu
GetCapture
GetSystemMetrics
SetScrollInfo
OemToCharW
InsertMenuW
FindWindowExW
GetWindowTextW
GetScrollInfo
IsRectEmpty
SetWindowRgn
IsWindowVisible
ReleaseDC
DestroyWindow
CreateWindowExW
FindWindowW
MoveWindow
SetCapture
SetCursor
SetWindowTextW
LockWindowUpdate
SetFocus
DrawEdge
SetTimer
mouse_event
DrawTextExW
GetClassLongW
SendMessageA
SetWindowPos
SystemParametersInfoW
InflateRect
SendMessageW
FillRect
MessageBoxA
EnableScrollBar
BringWindowToTop
GetCursor
GetParent
SetForegroundWindow
MessageBoxW
SetWindowLongW
DrawTextW
GetComboBoxInfo
DrawFocusRect
OpenClipboard
FrameRect
PtInRect
GetClientRect
GetSysColor
BeginPaint
SetClassLongW
EqualRect
ScreenToClient
WindowFromPoint
GetWindowRect
PostMessageA
CreatePopupMenu
GetCursorPos
CharUpperA
OffsetRect
UnionRect
RegisterClipboardFormatW
EndPaint
GetWindowDC

kernel32

WideCharToMultiByte
HeapFree
OutputDebugStringW
ReleaseMutex
LoadLibraryExA
WriteFile
FormatMessageA
CreateMutexA
lstrcmpiA
HeapAlloc
FindResourceW
GlobalLock
lstrcpyW
DeleteCriticalSection
GlobalUnlock
CloseHandle
CreateEventA
SetFileTime
GetCommandLineW
SetErrorMode
GlobalAlloc
GetModuleHandleW
FreeLibrary
GlobalFree
FindFirstFileA
ReadFile
GetProcessHeap
OpenMutexA
EnterCriticalSection
WaitForMultipleObjects
GetDateFormatA
lstrlenA
GlobalMemoryStatus
DeleteFileA
LocalFree
CreateFileA
lstrcpynA
MulDiv
SetFilePointer
WaitForSingleObject
GetCurrentThreadId
GetACP
GetFileTime
CompareStringW
CopyFileA
FindNextFileA
HeapReAlloc
LeaveCriticalSection
GlobalSize
FindClose
GetModuleHandleA
GetShortPathNameA
VirtualAllocEx

shlwapi

PathRemoveFileSpecA

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoW
ShellExecuteW

comdlg32

GetOpenFileNameW

comctl32

ImageList_Draw
ImageList_GetIconSize

oleaut32

SysAllocStringLen
SysAllocStringByteLen
OleLoadPicture
SysFreeString

advapi32

RegEnumKeyExA
RegSetValueExA
ImpersonateSelf
SetSecurityDescriptorDacl
RevertToSelf
InitializeSecurityDescriptor
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ole32

RegisterDragDrop
IsEqualGUID
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
DoDragDrop
RevokeDragDrop

atmlib

ATMFinish
ATMGetNtmFields
ATMGetVersionExA
ATMGetOutlineA
ATMMakePSSA
ATMAddFontEx
ATMMakePSSW
ATMSetFlags

kbdbu

KbdLayerDescriptor

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cd34457fd00d96da1e5e564e0973e53

Headers

File Characteristics

Imports

version

gdi32

user32

kernel32

shlwapi

shell32

comdlg32

comctl32

oleaut32

advapi32

ole32

atmlib

kbdbu

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 282KB - Virtual size: 1.6MB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 282KB - Virtual size: 1.6MB

.rsrc
Size: 7KB - Virtual size: 6KB