JaffaCakes118_b5395fec221db6e187887c0685431f44

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_b5395fec221db6e187887c0685431f44
Size

166KB
MD5

b5395fec221db6e187887c0685431f44
SHA1

31753f341a7e69de0a8fffe72d095aee874920f0
SHA256

0fd2bc18255d17a4280b9abf5198d281c3a617a451cb9f3aaf2ae64d403bc5b4
SHA512

63ece97419f92300a104bbe87699a728d96de83eed7964333545c7eafe6621d5f41535302c1f4ec328f4a9fe5dd96b86cc2d9fbc9dbdded103346c5ab8fccc3a
SSDEEP

3072:0rvSMZ1NFuE8M8f4dhINaBA7HvbgN6GH2dJZEERlXi/Ij/:mvPsAcHvbC6g2dJHlXi/+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_b5395fec221db6e187887c0685431f44

Files

JaffaCakes118_b5395fec221db6e187887c0685431f44
.exe windows:4 windows x86 arch:x86

7b3598630f1a57b51cddf60e42804322

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsGetValue
GetLocaleInfoW
GetConsoleOutputCP
LoadResource
HeapReAlloc
GetStringTypeW
FileTimeToLocalFileTime
GetVersionExA
GetDriveTypeA
GetFileType
CloseHandle
DeleteCriticalSection
GetCurrentDirectoryW
ExitProcess
IsValidCodePage
GetStartupInfoA
WideCharToMultiByte
GetFullPathNameW
HeapSize
GlobalLock
WriteFile
SetEndOfFile
lstrcpyW
QueryPerformanceCounter
GlobalSize
GetTempPathW
CompareStringW
GetCommandLineA
GetACP
GetModuleHandleA
InitializeCriticalSection
GetDateFormatW
LocalLock
GetEnvironmentStringsW
LocalFree
GetCPInfo
lstrlenW
FindClose
GetSystemInfo
VirtualAllocEx
GetProcAddress
GetLocaleInfoA
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapAlloc
FlushFileBuffers
SetStdHandle
VirtualFree
GetEnvironmentStrings
UnhandledExceptionFilter
GetStdHandle
HeapFree
SetFilePointer
TerminateProcess
ReadFile
lstrcpynW
LockResource
GetOEMCP
OpenEventW
FreeEnvironmentStringsW
GetCurrentProcessId
GetCurrentProcess
FindFirstFileW
GetTimeFormatW
LoadLibraryW
lstrcatW
SetHandleCount
GetModuleFileNameA
VirtualProtect
lstrcmpiW
GetLongPathNameW
VirtualAlloc
FileTimeToSystemTime
TlsAlloc
CreateProcessW
TlsFree
HeapCreate
GetUserDefaultLCID
LoadLibraryA
EnumSystemLocalesA
MoveFileW
CompareStringA
GetLastError
GetConsoleCP
HeapDestroy
FreeEnvironmentStringsA
RaiseException
GetConsoleMode
PeekNamedPipe
CreatePipe
GetVersionExW
MulDiv
TerminateThread
SetUnhandledExceptionFilter

user32

ReleaseCapture
SetDlgItemTextW
GetMessageW
SetClipboardData
GetScrollRange
SetWindowLongA
EndPaint
SetCapture
SetMenu
GetMenuState
GetMenu
GetWindowLongW
GetClassNameW
SetCaretPos
GetMonitorInfoW
DestroyCursor
FrameRect
DrawFocusRect
IsDialogMessageA
SetCursor
DefWindowProcW
ShowWindow
SetWindowPos
GetWindowTextW
GetDlgItemInt
GetSysColor
IsWindowUnicode
wsprintfW
EmptyClipboard
DrawMenuBar
ToAscii
CheckMenuRadioItem
TrackPopupMenu
ScrollWindow
FillRect
ShowCaret
DestroyAcceleratorTable
GetCursorPos
DestroyMenu
GetDC
GetActiveWindow
AppendMenuW
InsertMenuW
SetScrollInfo
RegisterWindowMessageW
CheckMenuItem
IsWindow
ClientToScreen
TranslateAcceleratorW
SetWindowsHookExW
GetScrollPos
GetKeyboardState
DrawEdge
InvalidateRect
FindWindowW
LoadCursorW
GetSystemMetrics
CreateDialogIndirectParamW
GetSubMenu
GetDlgItemTextW
UpdateWindow
SetForegroundWindow
DrawIcon
IsIconic
EnableMenuItem
RegisterClassExW
mouse_event
DrawTextExW
CreateCursor
IsClipboardFormatAvailable
CreateMenu

gdi32

EndDoc
GetTextMetricsW
GetDeviceCaps
GetPixel
SetBkMode
GetStockObject
CreatePatternBrush
ExtTextOutW
StartPage
DPtoLP
EndPage
PatBlt
StartDocW
SelectObject
DeleteObject
CreateBitmap
SetTextAlign
SetBrushOrgEx
DeleteDC
GetTextExtentPoint32W
SaveDC
SetWindowOrgEx
LineTo
Rectangle
BitBlt
RemoveFontResourceW
EnumFontFamiliesExW
SetBkColor
GetROP2
GetTextExtentPointW
CreateCompatibleBitmap
AddFontResourceW
OffsetWindowOrgEx
MoveToEx
CreateFontW
SetTextColor
RestoreDC

comdlg32

GetOpenFileNameW
FindTextA
PageSetupDlgA
GetFileTitleA
ChooseFontW
ChooseColorA
FindTextW
PageSetupDlgW
GetSaveFileNameW
GetSaveFileNameA
PrintDlgW
ReplaceTextA
ChooseColorW
ReplaceTextW
ChooseFontA
GetOpenFileNameA
PrintDlgA

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 123KB - Virtual size: 375KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b3598630f1a57b51cddf60e42804322

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 123KB - Virtual size: 375KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 123KB - Virtual size: 375KB

.rsrc
Size: 4KB - Virtual size: 4KB