JaffaCakes118_c5e0f0a3cbcb7974d752cb36aa467eea

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_c5e0f0a3cbcb7974d752cb36aa467eea
Size

217KB
MD5

c5e0f0a3cbcb7974d752cb36aa467eea
SHA1

ddb514123aa082b85615a4a318bcef789911043c
SHA256

9d2227fab6d72a538680562c9a1836f3d40fc528a89bb055fa861161a0c2788b
SHA512

3faeb30a9860adaa7061b2278f1e6f8e9e04e972f84ad5da9b57b6788a51bd1f59a4f34a68d0b5f826397115d148f24100ab103582a7b7f47999c448f1b441b4
SSDEEP

6144:WqLPjb9UaJalcSMu9S7gWPdg+eBHQQl+7cxts/y:Wkbu3cSruBPbeBbQwx+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_c5e0f0a3cbcb7974d752cb36aa467eea

Files

JaffaCakes118_c5e0f0a3cbcb7974d752cb36aa467eea
.exe windows:4 windows x86 arch:x86

a31533b82a1ae6755d1d83a6ec5dd0d0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
GetTimeFormatA
GetProcAddress
LoadLibraryA
SetEvent
GetComputerNameA
GetFileType
RemoveDirectoryA
FileTimeToSystemTime
BeginUpdateResourceW
InitializeCriticalSection
GetTimeFormatW

user32

WaitForInputIdle
GetClassInfoExW
GetWindowRect
CopyImage
GetWindowRect
MoveWindow
GetMenuItemCount
LoadMenuIndirectW
GetAsyncKeyState
ClientToScreen
SetWindowTextA
SetDlgItemTextW
wsprintfW
GetForegroundWindow
OffsetRect
SetForegroundWindow
GetIconInfo

gdi32

GetTextMetricsW
GetGraphicsMode
FrameRgn
FloodFill
CreateDCW
GetKerningPairsA
CreateDCA
CopyEnhMetaFileA
CreatePolygonRgn
GetWorldTransform
ExtTextOutW
GetCharWidth32A
CreateDIBPatternBrushPt
EnumFontsW
OffsetClipRgn
GetGlyphOutlineA
CreateCompatibleDC
CreateFontA
PtInRegion

advapi32

RegDeleteKeyA
RegEnumValueW
RegCloseKey
RegDeleteValueA
RegOpenKeyW
RegFlushKey
RegReplaceKeyW
RegCreateKeyExW
RegQueryValueA

shlwapi

PathUndecorateA
PathSearchAndQualifyW
SHRegOpenUSKeyA
PathMatchSpecW
StrCmpNA
PathBuildRootA
PathStripToRootA
PathSetDlgItemPathW
PathRemoveBackslashA

comctl32

DllGetVersion
InitCommonControls
ImageList_SetImageCount
FlatSB_GetScrollInfo

oleaut32

VarMod

Sections

.mUiH
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Tuf
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bBa
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bme
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Q
Size: 5KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndXuc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a31533b82a1ae6755d1d83a6ec5dd0d0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shlwapi

comctl32

oleaut32

Sections

.mUiH Size: 5KB - Virtual size: 5KB

.Tuf Size: 86KB - Virtual size: 85KB

.bBa Size: 12KB - Virtual size: 12KB

.bme Size: 2KB - Virtual size: 4KB

.Q Size: 5KB - Virtual size: 353KB

.ndXuc Size: 84KB - Virtual size: 84KB

.data Size: 9KB - Virtual size: 362KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1024B - Virtual size: 1024B

.mUiH
Size: 5KB - Virtual size: 5KB

.Tuf
Size: 86KB - Virtual size: 85KB

.bBa
Size: 12KB - Virtual size: 12KB

.bme
Size: 2KB - Virtual size: 4KB

.Q
Size: 5KB - Virtual size: 353KB

.ndXuc
Size: 84KB - Virtual size: 84KB

.data
Size: 9KB - Virtual size: 362KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1024B - Virtual size: 1024B