d5da4effb15b169bcc2f077601e1917b_JaffaCakes118

General

Target

d5da4effb15b169bcc2f077601e1917b_JaffaCakes118
Size

181KB
MD5

d5da4effb15b169bcc2f077601e1917b
SHA1

f30981bd956fe700e40754da40e1edbfa030ad5c
SHA256

bd4b7960ce2b22637c5aaab2375a408adaf6df83cbb3225243697e6da434accb
SHA512

77886b4900d5e2fd7b606bc2f8f2e1475d2b579b9df0b338dcfe5494c6ef5a2d3a938bf25820b424430fa7dd566212e8497a5e113ae477eb1b0d3cb5482f26d7
SSDEEP

3072:X1kLuoetGSs89EPMuJx+32JWVDNHv73lexURVQcW1rF4NBeDb:X1kuNtm/EuSxZf+cDB6b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5da4effb15b169bcc2f077601e1917b_JaffaCakes118

Files

d5da4effb15b169bcc2f077601e1917b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

acbfc15a493126b2d53a352d332bec63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
HeapAlloc
CreateProcessA
GetModuleHandleA
GetCalendarInfoW
lstrlenW
IsDebuggerPresent
CreateFileW
WriteFile
CloseHandle
HeapReAlloc
GetTickCount
GetLocaleInfoA
LoadLibraryExW
GetCurrentProcess
InterlockedExchange
GetSystemTime
HeapSize
SystemTimeToFileTime
GetThreadLocale
GetStartupInfoA
WideCharToMultiByte
LocalAlloc
MultiByteToWideChar
GetStdHandle
EnumResourceNamesA
Sleep
GetCurrentThreadId
HeapFree
RaiseException
HeapDestroy
lstrlenA
UnhandledExceptionFilter
FindFirstFileW
GetEnvironmentVariableA
GetCurrentProcessId
GetProcessHeap
GetACP
LoadLibraryW
SetUnhandledExceptionFilter
QueryPerformanceCounter
InterlockedCompareExchange
TerminateProcess
lstrcpynW

user32

GetSysColor
LoadCursorA
SetWindowPos
GetWindowInfo
GetDC
ReleaseDC
SetWindowLongA
ReleaseCapture
SetCursor
GetWindowLongA
IsWindow
GetDlgItem
FillRect
MoveWindow
SetCapture

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

oleacc

LresultFromObject
CreateStdAccessibleObject

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

acbfc15a493126b2d53a352d332bec63

Headers

File Characteristics

Imports

kernel32

user32

ole32

winmm

oleacc

version

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 81KB - Virtual size: 80KB

.rsrc Size: 1024B - Virtual size: 120KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 81KB - Virtual size: 80KB

.rsrc
Size: 1024B - Virtual size: 120KB