cf86a112eca969a28b5d08a015aa5a41_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

cf86a112eca969a28b5d08a015aa5a41_JaffaCakes118
Size

184KB
MD5

cf86a112eca969a28b5d08a015aa5a41
SHA1

2e730e35e1df222b531ad40d4235bce4222fff75
SHA256

b47260f1e0e646719c8d38f0e0fdd579a6b25b9db48d7b4e6447a5edce3a7de3
SHA512

9da8140a14e9c8dd264056ac31f6e8b3e174d864952be9e974ddc4c548186aba841892d30250137e4cb96fe326c46089ce7c3365429e1270147a82f5a280c77b
SSDEEP

3072:yIkclVwZx7RWtScSg5rh+gn5A2RG+XdnoDB8Ya2YLuLkGU1yo/tW:uclVux7ItTg2RGcI+Ya9QUES

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf86a112eca969a28b5d08a015aa5a41_JaffaCakes118

Files

cf86a112eca969a28b5d08a015aa5a41_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9e034bf541cf5750a20a1e5303eb4ebb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

mciSendCommandA
sndPlaySoundA

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

FillRect
ReleaseDC
GetSysColor
GetWindowLongA
SetCursor
GetDC
IsWindow
ReleaseCapture
SetWindowPos
GetWindowInfo
LoadCursorA
GetDlgItem
MoveWindow
SetWindowLongA
SetCapture

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

advapi32

RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegOpenKeyA
RegSetValueExA

kernel32

SetTapeParameters
FindClose
ClearCommError
Sleep
GetCurrentProcessId
GetLocalTime
EnumResourceNamesA
GetWindowsDirectoryA
ExitProcess
InterlockedExchange
GetVersion
FindFirstFileA

gdi32

GetObjectA
GetTextExtentPoint32A
DeleteObject
SetBkMode
CreateCompatibleDC
CreateRectRgn
DeleteMetaFile
RestoreDC
GetStockObject
Rectangle
SelectObject
DeleteDC
GetDeviceCaps
SetTextColor
CreateFontIndirectA
EnumFontFamiliesExA
CreateSolidBrush
BitBlt
TextOutA
SaveDC
CreateCompatibleBitmap

Sections

.text
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e034bf541cf5750a20a1e5303eb4ebb

Headers

File Characteristics

Imports

winmm

oleacc

user32

shell32

ole32

version

advapi32

kernel32

gdi32

Sections

.text Size: 152KB - Virtual size: 152KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 28KB - Virtual size: 27KB

.lib Size: 512B - Virtual size: 224KB

.text
Size: 152KB - Virtual size: 152KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 28KB - Virtual size: 27KB

.lib
Size: 512B - Virtual size: 224KB