JaffaCakes118_7ef384f300ba1b234b526c5edc33dcdf

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_7ef384f300ba1b234b526c5edc33dcdf
Size

304KB
MD5

7ef384f300ba1b234b526c5edc33dcdf
SHA1

7d74018de76bf93ad6a0d44a6dedc2e187d33e0a
SHA256

1883eaab9be444d5a9eb805bf9ac341cdc27f227b5b6445b34554e43e0f3863c
SHA512

1cc5a2f3819f4766f81bfd570779403a9035631587fe2f7c01490adb4bd89ce940e6711db3378d0cc0dac1ce96210abfa762d40bb39999d850dc6ecc79a5574a
SSDEEP

6144:iAaEUlNTw9QK8FGFAj7Ys0tXKpgTjs2pcAHDPKC6KAtmK+:iJNTKUYzapg/PDPpO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7ef384f300ba1b234b526c5edc33dcdf

Files

JaffaCakes118_7ef384f300ba1b234b526c5edc33dcdf
.exe windows:4 windows x86 arch:x86

45f90009d70c0f9dc816ea995c8c3049

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegOpenKeyExW

kernel32

TlsGetValue
LockResource
CreateEventW
TlsFree
InterlockedPushEntrySList
FindFirstFileW
SizeofResource
SwitchToThread
lstrcmpW
CloseHandle
WaitForSingleObject
FindResourceW
GetSystemTimeAsFileTime
GetComputerNameW
CopyFileA
OutputDebugStringW
UnmapViewOfFile
LoadResource
VirtualFree
MapViewOfFile
CopyFileW
DeleteCriticalSection
HeapDestroy
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
lstrlenW
GlobalUnlock
IsDebuggerPresent
HeapFree
CreateFileA
GetShortPathNameW
SetLastError
GetCurrentDirectoryW
GetFileSize
FindClose
GlobalLock
FindNextFileW
TlsAlloc
EnumResourceNamesW
CreateDirectoryW
HeapReAlloc
EnterCriticalSection
CreateFileW
LeaveCriticalSection
ReadFile
GetFullPathNameW
FindResourceExW
GetCurrentThreadId
CreateThread
HeapAlloc
GlobalAlloc
InterlockedPopEntrySList
VirtualAlloc
SetFileAttributesW
HeapSize
RaiseException
FlushInstructionCache
TlsSetValue
IsValidCodePage
GetProcessHeap
lstrlenA
FreeLibrary
GetACP
RemoveDirectoryW
GetSystemDefaultLCID
MulDiv
SetFileAttributesA
UnhandledExceptionFilter
IsProcessorFeaturePresent
SetThreadPriority
GetModuleHandleW
LocalAlloc
ExpandEnvironmentStringsW
CreateFileMappingW
WideCharToMultiByte
VirtualAllocEx

gdi32

GetDeviceCaps
LPtoDP
TextOutW
DeleteObject
SetMapMode
SetWindowOrgEx
DeleteDC
SetWindowExtEx
RestoreDC
DeleteMetaFile
CreateFontIndirectW
CloseMetaFile
SetTextAlign
CreateMetaFileW
SetViewportOrgEx
SaveDC
CreateRectRgnIndirect
GetTextColor

oleaut32

GetErrorInfo
UnRegisterTypeLi
DispCallFunc
SysFreeString
SafeArrayGetVartype
SysAllocStringByteLen
SysStringLen
SafeArrayAccessData
VariantCopy
SafeArrayGetElement
SafeArrayUnaccessData
SysAllocStringLen
SafeArrayGetLBound
VarBstrCat
SafeArrayCopy
VariantInit
OleCreatePropertyFrame
SafeArrayLock
VariantChangeType
VarBstrCmp
SysStringByteLen
LoadTypeLi
SafeArrayUnlock
SafeArrayCreate
LoadRegTypeLi
VariantClear
SysAllocString
SafeArrayGetUBound
RegisterTypeLi
SafeArrayDestroy

user32

GetWindowTextLengthW
GetParent
IntersectRect
GetClientRect
MonitorFromWindow
GetClassInfoExW
GetWindowLongW
MapDialogRect
EndDialog
OffsetRect
DestroyWindow
CharToOemBuffA
SendMessageA
SendMessageW
MapWindowPoints
GetClassNameW
CreateWindowExW
PostMessageW
SetWindowRgn
IsWindowEnabled
RegisterClassExW
InvalidateRect
GetWindow
GetMenu
UnregisterClassA
CallNextHookEx
SetWindowTextW
UnhookWindowsHookEx
EqualRect
GetWindowRect
LoadCursorW
IsChild
UnionRect
CharNextW
PtInRect
GetWindowTextW
SetWindowPos
SetFocus
AdjustWindowRectEx
EndPaint
GetDC
IsWindow
BeginPaint
GetMonitorInfoW
DefWindowProcW
MessageBoxExW
ShowWindow
SetCursor
SetWindowLongW
GetKeyState
ReleaseDC
SetWindowsHookExW
GetFocus
EnableWindow
CallWindowProcW
SetWindowContextHelpId
UpdateLayeredWindow
CharUpperA
SetTimer
GetDesktopWindow
SetDlgItemTextW
GetSysColor
CreateDialogParamW
WinHelpA
GetSystemMetrics
PeekMessageA
wsprintfW
CharLowerW
wsprintfA
LoadMenuW
GetScrollPos
SendDlgItemMessageA
LoadImageW
GetMenuState
GetDCEx
GetForegroundWindow
PostQuitMessage
CheckMenuItem
IsIconic
OpenClipboard
GetActiveWindow
RegisterWindowMessageW

ole32

CreateOleAdviseHolder
OleRegGetUserType
CLSIDFromProgID
IIDFromString
StringFromGUID2
CreateDataAdviseHolder
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
ProgIDFromCLSID
OleRegGetMiscStatus
CLSIDFromString
StringFromCLSID
CoCreateGuid
CreateStreamOnHGlobal
OleRegEnumVerbs

shlwapi

PathIsRootW
PathFileExistsW
PathFindFileNameW
PathIsRelativeW
PathIsURLW
PathStripToRootW
PathRemoveExtensionW
PathStripPathW
PathCanonicalizeW

cmpbk32

PhoneBookEnumNumbersWithRegionsZero
PhoneBookGetPhoneDUNA

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 271KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45f90009d70c0f9dc816ea995c8c3049

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

oleaut32

user32

ole32

shlwapi

cmpbk32

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 271KB - Virtual size: 1.1MB

.rdata Size: 6KB - Virtual size: 5KB

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 271KB - Virtual size: 1.1MB

.rdata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 6KB - Virtual size: 8KB