14d96a3104cc5de8de9dc5d0f345a422_JaffaCakes118

General

Target

14d96a3104cc5de8de9dc5d0f345a422_JaffaCakes118
Size

176KB
MD5

14d96a3104cc5de8de9dc5d0f345a422
SHA1

a7893d595f0d6dbed1d5bd59c20993ae55013115
SHA256

33b408f4e2f6939f0eda670de3b96784f9ae8a1ed136f0da3e4cfd336f6c85ad
SHA512

9bc9ad26c55c053a1786dc527c6c52d6bb90bb17e31e849be49224db7302136f2a1502d5a43ab967836e605c79fda1eb252a89b8f3b23712fe66a190633dd72e
SSDEEP

3072:Ih2uSGyG0clIGwsVr8WJ/jwmNnV9T8cLuOwJfyTlkYD59yfG6a:IhpSHYlJ5fcQSHOgfyhkYDHwGz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14d96a3104cc5de8de9dc5d0f345a422_JaffaCakes118

Files

14d96a3104cc5de8de9dc5d0f345a422_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69103f7e428e3676d9d496934b9452bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
SetUnhandledExceptionFilter
LocalAlloc
GetCalendarInfoW
GetLocaleInfoA
WriteFile
HeapAlloc
HeapReAlloc
TerminateProcess
RaiseException
GetACP
CreateFileW
GetTickCount
GetModuleHandleA
CloseHandle
GetCurrentProcess
HeapDestroy
HeapFree
InterlockedExchange
GetCurrentProcessId
CreateProcessA
UnhandledExceptionFilter
EnumResourceNamesA
Sleep
GetSystemTime
lstrlenW
WideCharToMultiByte
GetProcessHeap
QueryPerformanceCounter
LoadLibraryExW
LoadLibraryW
MultiByteToWideChar
lstrlenA
FindFirstFileW
SystemTimeToFileTime
InterlockedCompareExchange
GetStartupInfoA
GetEnvironmentVariableA
GetThreadLocale
IsDebuggerPresent
GetCurrentThreadId
GetStdHandle
GetSystemTimeAsFileTime
lstrcpynW

user32

SetWindowLongA
IsWindow
GetWindowInfo
GetWindowLongA
GetDlgItem
ReleaseCapture
MoveWindow
SetCursor
FillRect
GetDC
GetSysColor
ReleaseDC
SetWindowPos
LoadCursorA
SetCapture

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69103f7e428e3676d9d496934b9452bd

Headers

File Characteristics

Imports

kernel32

user32

version

oleacc

ole32

winmm

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 74KB - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 256KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 74KB - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 256KB