JaffaCakes118_7c8298f508facfec74a709f66683c1b3

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_7c8298f508facfec74a709f66683c1b3
Size

281KB
MD5

7c8298f508facfec74a709f66683c1b3
SHA1

7f4587486bf436e672930f921bb54145177de48f
SHA256

50f923e303e5e3130e4e41704200c36433aeb8ff21f6547cba37263fc2b03f7e
SHA512

5a37e5536cfc9256b96794012032c107fd5402ca315ba7d2315f6d3e1150a21a581c608d124a31b5e06453a6f1c52be96cfb8e749f9247ef2a6a5e192cbbe799
SSDEEP

6144:vLjNVAQq73ts4IMvc6eFrhUBHzeDPHLRc5:vnAlTts4JChyzerHtc5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7c8298f508facfec74a709f66683c1b3

Files

JaffaCakes118_7c8298f508facfec74a709f66683c1b3
.exe windows:4 windows x86 arch:x86

23f99ed004dec4de9f827d939eb879d4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsRelativeW
PathFindFileNameW
PathRemoveExtensionW
PathCanonicalizeW
PathIsURLW
PathStripToRootW
PathStripPathW
PathIsRootW
PathFileExistsW

gdi32

DeleteDC
SetViewportOrgEx
SetWindowExtEx
CreateMetaFileW
RestoreDC
SetTextAlign
SaveDC
CloseMetaFile
CreateFontIndirectW
LPtoDP
GetDeviceCaps
SetWindowOrgEx
CreateRectRgnIndirect
TextOutW
DeleteMetaFile
DeleteObject
SetMapMode

kernel32

GlobalAlloc
EnumResourceNamesW
FlushInstructionCache
FreeLibrary
lstrlenA
LeaveCriticalSection
RaiseException
RemoveDirectoryW
IsDebuggerPresent
lstrlenW
LoadResource
GetSystemTimeAsFileTime
ExpandEnvironmentStringsW
GetACP
TlsGetValue
VirtualFree
GetCurrentThreadId
GetProcessHeap
InterlockedPopEntrySList
UnhandledExceptionFilter
GlobalUnlock
MulDiv
LocalAlloc
IsProcessorFeaturePresent
FindResourceExW
WaitForSingleObject
IsValidCodePage
SetFileAttributesA
CreateFileMappingW
OutputDebugStringW
DeleteCriticalSection
GlobalLock
GetShortPathNameW
GetModuleHandleW
GetComputerNameW
CreateFileA
TlsAlloc
CreateFileW
CopyFileW
SetThreadPriority
GetSystemDefaultLCID
GetFileSize
FindResourceW
GetCurrentDirectoryW
CreateDirectoryW
HeapReAlloc
InterlockedPushEntrySList
HeapDestroy
CopyFileA
VirtualAlloc
HeapFree
FindNextFileW
ReadFile
FindClose
FindFirstFileW
MapViewOfFile
EnterCriticalSection
LockResource
WideCharToMultiByte
UnmapViewOfFile
HeapSize
SwitchToThread
SetFileAttributesW
TlsSetValue
HeapAlloc
TlsFree
CreateThread
CreateEventW
CloseHandle
lstrcmpW
SetUnhandledExceptionFilter
SizeofResource
SetLastError
GetFullPathNameW
InitializeCriticalSectionAndSpinCount
CompareFileTime
VirtualAllocEx

oleaut32

SysStringByteLen
SysStringLen
SysAllocString
VariantInit
RegisterTypeLi
VariantChangeType
SafeArrayLock
SysFreeString
GetErrorInfo
VarBstrCat
LoadTypeLi
DispCallFunc
SysAllocStringByteLen
SafeArrayCreate
SafeArrayUnaccessData
SafeArrayCopy
VariantClear
SafeArrayDestroy
LoadRegTypeLi
SafeArrayGetUBound
VarBstrCmp
SysAllocStringLen
SafeArrayGetElement
VariantCopy
SafeArrayGetVartype
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayUnlock
OleCreatePropertyFrame
UnRegisterTypeLi

user32

RegisterClassExW
MonitorFromWindow
OffsetRect
MessageBoxExW
GetParent
LoadCursorW
SetFocus
IntersectRect
GetMonitorInfoW
EnableWindow
GetMenu
PtInRect
MapWindowPoints
CharToOemBuffA
UnionRect
IsWindowEnabled
EndDialog
EndPaint
CharNextW
IsChild
SendMessageA
BeginPaint
MapDialogRect
GetClassNameW
SetWindowRgn
SetCursor
GetWindowRect
InvalidateRect
UnhookWindowsHookEx
CreateWindowExW
DefWindowProcW
SendMessageW
UnregisterClassA
CallNextHookEx
EqualRect
PostMessageW
GetWindowLongW
GetDC
DestroyWindow
ShowWindow
SetWindowPos
GetKeyState
AdjustWindowRectEx
SetWindowTextW
SetWindowContextHelpId
CallWindowProcW
GetClientRect
GetFocus
ReleaseDC
GetClassInfoExW
GetWindow
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
IsWindow
SetWindowsHookExW

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExA
RegCreateKeyExW
RegEnumKeyExW
RegSetValueExW

ole32

CoTaskMemAlloc
ProgIDFromCLSID
CLSIDFromProgID
IIDFromString
OleRegEnumVerbs
CreateDataAdviseHolder
CoCreateInstance
StringFromGUID2
OleRegGetMiscStatus
CreateStreamOnHGlobal
CreateOleAdviseHolder
CLSIDFromString
OleRegGetUserType
StringFromCLSID
CoCreateGuid
CoTaskMemFree

userenv

GetProfileType
UnloadUserProfile
FreeGPOListW
GetAllUsersProfileDirectoryW
DllGetClassObject
UnregisterGPNotification

loadperf

InstallPerfDllW

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 248KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23f99ed004dec4de9f827d939eb879d4

Headers

File Characteristics

Imports

shlwapi

gdi32

kernel32

oleaut32

user32

advapi32

ole32

userenv

loadperf

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 248KB - Virtual size: 249KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 248KB - Virtual size: 249KB

.rsrc
Size: 11KB - Virtual size: 11KB