JaffaCakes118_799ac3fcdfdceebe536ecd97f6fe09eb

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_799ac3fcdfdceebe536ecd97f6fe09eb
Size

309KB
MD5

799ac3fcdfdceebe536ecd97f6fe09eb
SHA1

508ca51a3b21625538020719adf46c277f17cb26
SHA256

9fd3ee0b6ed291d076b91c31bad0ca62af04cb5639f98321832044409287f3bd
SHA512

602f2bd78dfd4004f29963390626d17e2b5902f18916769d065ce08afd14ff413ee8ae61ea9f44549801e10f57cda93f4b401167d497c6f1fb093e7f81b78c57
SSDEEP

6144:/VPN7wQ8P9sUeNE69gMG01kr5cG3/fbYKzeNsxB7SWz:/VPy3FsU/fp01krf/zXeSf7Fz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_799ac3fcdfdceebe536ecd97f6fe09eb

Files

JaffaCakes118_799ac3fcdfdceebe536ecd97f6fe09eb
.exe windows:5 windows x86 arch:x86

2706438a0f99d93f336686f451ec1265

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
CreateThread
HeapReAlloc
UnhandledExceptionFilter
ExpandEnvironmentStringsA
GetThreadLocale
WaitForSingleObject
GetCurrentThreadId
VirtualFree
HeapAlloc
SizeofResource
GetUserDefaultLangID
lstrcmpiW
HeapDestroy
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
RaiseException
HeapSize
lstrlenA
GetDriveTypeW
IsProcessorFeaturePresent
ResumeThread
GetProcessHeap
GlobalFree
LocalFree
GlobalAlloc
FlushInstructionCache
lstrcpyW
LoadResource
FreeLibrary
GetTimeFormatW
VirtualAlloc
GetUserDefaultLCID
lstrcpynW
FindResourceExW
SetWaitableTimer
lstrcmpW
IsDebuggerPresent
GetACP
WaitForMultipleObjects
TerminateThread
CreateWaitableTimerW
FindResourceW
DeleteFileW
SetLastError
LoadLibraryExW
CreateEventW
EnterCriticalSection
GlobalLock
lstrlenW
GetCommandLineW
OpenEventW
FormatMessageW
HeapFree
GetDateFormatW
FindNextFileW
LocalAlloc
GetModuleHandleW
FatalAppExitW
WideCharToMultiByte
LeaveCriticalSection
CloseHandle
GetNumberFormatW
FindFirstFileW
GlobalUnlock
MulDiv
LockResource
FindClose
BeginUpdateResourceW
VirtualAllocEx

ole32

CoInitializeSecurity
CoResumeClassObjects
CLSIDFromString
CoUninitialize
CoRevokeClassObject
CreateStreamOnHGlobal
OleRun
CoRegisterClassObject
CLSIDFromProgID
CoCreateInstance
StringFromGUID2
CoInitialize

userenv

UnloadUserProfile

shell32

SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetMalloc
ShellExecuteExW

advapi32

RegCreateKeyExW
RegOpenKeyExW
OpenProcessToken
RegOpenKeyExA
AdjustTokenPrivileges
RegNotifyChangeKeyValue
RegQueryValueExW
LookupPrivilegeValueW
RegQueryValueExA
RegSetValueExW
RegCloseKey

oleaut32

SysStringLen
LoadRegTypeLi
SafeArrayGetVartype
SafeArrayRedim
VarBstrCmp
VariantInit
SysAllocString
GetErrorInfo
SysAllocStringLen
VariantTimeToSystemTime
SafeArrayUnlock
SafeArrayLock
LoadTypeLi
SafeArrayCreate
VariantClear
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayDestroy
SysStringByteLen
SysAllocStringByteLen
SafeArrayUnaccessData
SafeArrayAccessData
DispCallFunc
SafeArrayCopy
SystemTimeToVariantTime
SysFreeString
VariantCopyInd
SafeArrayGetUBound

user32

DrawIconEx
GetWindowDC
IsWindowEnabled
SetTimer
LoadImageW
InvalidateRect
RedrawWindow
IsIconic
CopyRect
EndPaint
SetWindowLongW
SetForegroundWindow
GetFocus
GetClassInfoExW
SetWindowPos
PostMessageW
GetGUIThreadInfo
DrawFocusRect
GetTabbedTextExtentW
SystemParametersInfoW
CloseClipboard
IsWindow
PostQuitMessage
DrawStateW
GetActiveWindow
OpenClipboard
EmptyClipboard
SetClipboardData
UpdateWindow
MessageBoxW
MoveWindow
DialogBoxParamW
PostThreadMessageW
GetParent
GetDlgItem
GetSysColor
RegisterClassW
GetSystemMetrics
AttachThreadInput
IsRectEmpty
TranslateMessage
ShowWindow
MapWindowPoints
GetCursorPos
ScreenToClient
TabbedTextOutW
SendMessageW
GetDesktopWindow
GetCapture
CharNextW
RegisterClassExW
OffsetRect
IsDialogMessageW
CallWindowProcW
SendInput
CharUpperBuffW
SetDlgItemTextW
PtInRect
KillTimer
GetSystemMenu
FindWindowExW
AppendMenuW
GetWindowLongW
SetParent
PeekMessageW
EnableWindow
DrawTextW
DestroyWindow
BeginPaint
IsWindowVisible
SetCapture
UnhookWindowsHookEx
GetDlgCtrlID
MapDialogRect
FlashWindow
LoadBitmapW
DispatchMessageW
GetMessageW
InflateRect
EndDialog
GetForegroundWindow
IsCharAlphaNumericW
GetWindowThreadProcessId
GetWindowRect
GetWindowTextLengthW
GetDC
SetRectEmpty
SetMenuDefaultItem
GetNextDlgTabItem
RegisterWindowMessageW
GetTopWindow
ExitWindowsEx
CreateDialogParamW
ReleaseDC
DefWindowProcW
GetClassInfoW
SetWindowsHookExW
SetFocus
SetWindowPlacement
UnregisterClassA
SetWindowTextW
LoadCursorW
GetWindowTextW
GetWindow
GetWindowPlacement
GetClassNameW
SetCursor
CallNextHookEx
ReleaseCapture
GetClientRect
DestroyIcon
CreateWindowExW
GetKeyState

shlwapi

PathAddExtensionW
PathAppendW
PathCompactPathExW
ColorAdjustLuma
PathSetDlgItemPathW
StrChrW
StrRetToStrW
PathRemoveFileSpecW

comctl32

ImageList_GetIcon
ImageList_Draw
ImageList_Destroy
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Create
_TrackMouseEvent
ImageList_GetImageCount
ImageList_AddMasked

gdi32

GetObjectType
GetObjectW
GetBkColor
GetTextExtentPoint32W
SelectClipRgn
CreateSolidBrush
SetROP2
DeleteDC
GetTextMetricsW
SetBkMode
TextOutW
SetTextColor
PtInRegion
RoundRect
CreateFontIndirectW
SetViewportOrgEx
CreateCompatibleDC
CreatePen
SelectObject
GetClipRgn
Polygon
BitBlt
SetTextAlign
CreateCompatibleBitmap
SetBkColor
ExtCreatePen
DeleteObject
GetTextExtentExPointW
GetDeviceCaps
CombineRgn
ExtTextOutW
GetStockObject
CreateRectRgnIndirect
CreateRectRgn

msimg32

GradientFill
TransparentBlt
AlphaBlend

esent

JetCreateIndex
JetGetLS
JetOpenTempTable2
JetDBUtilities
JetIntersectIndexes
JetGetTruncateLogInfoInstance
JetRegisterCallback
JetGetVersion
JetReadFileInstance
JetAttachDatabase2
JetGetColumnInfo
JetComputeStats
JetEndExternalBackup
JetReadFile
JetCommitTransaction
JetGetLogInfo

icmui

SetupColorMatchingW

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 275KB - Virtual size: 929KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2706438a0f99d93f336686f451ec1265

Headers

File Characteristics

Imports

kernel32

ole32

userenv

shell32

advapi32

oleaut32

user32

shlwapi

comctl32

gdi32

msimg32

esent

icmui

Sections

.text Size: 19KB - Virtual size: 19KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 275KB - Virtual size: 929KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 19KB - Virtual size: 19KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 275KB - Virtual size: 929KB

.rsrc
Size: 6KB - Virtual size: 5KB