JaffaCakes118_7aca6df0697411042832dbb88e1b2f650f646a35509830e9bf9dccb02e7529cb

General

Target

JaffaCakes118_7aca6df0697411042832dbb88e1b2f650f646a35509830e9bf9dccb02e7529cb
Size

479KB
MD5

1e1fc25b7f286ee9bf1abf6a0b69b64f
SHA1

d1c47ef1377042baa604f5746102ade7fa4f87ce
SHA256

7aca6df0697411042832dbb88e1b2f650f646a35509830e9bf9dccb02e7529cb
SHA512

9e3f0832b56dd5d83d3f8279631447efb9f95a3859bdfa091e07f2a224dc18bbb2f8fe6de58f7dd29f27ab7561b8f00272acb8e00a59f413899c6ab92dcf0788
SSDEEP

6144:yYt2FSUv3yC3heU7M2m7t1jvQ05/obBshB6VxXtExQeXk4qyU4t1KkA+N96nqe/X:ybTXbzFdCaxvy5kD+N0Uw+EYznwTrB3j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7aca6df0697411042832dbb88e1b2f650f646a35509830e9bf9dccb02e7529cb

Files

JaffaCakes118_7aca6df0697411042832dbb88e1b2f650f646a35509830e9bf9dccb02e7529cb
.exe windows:4 windows x86 arch:x86

8ead2edcc6d89b3bd7e16d6c68e622af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetEnvironmentStringsW
CreateEventA
CreateMutexA
GetOEMCP
SetLastError
GetTickCount
GetProcessHeap
lstrlenW
ExitProcess
GetProcAddress
CreateThread
CloseHandle
FormatMessageW
GetCommandLineW
GetStdHandle
InterlockedExchange
InterlockedDecrement
GetCommandLineA
GetACP
LCMapStringW
GetModuleHandleW
GetStartupInfoA

user32

SetWindowPos
CreateWindowExA
LoadCursorFromFileA
SetWindowTextW
LoadStringW
RegisterClassW
DefWindowProcW
LoadIconA
SetWindowLongW
SendMessageW
UnregisterClassA
PostMessageW
CreateWindowExW
ReleaseCapture
DestroyIcon

comctl32

InitCommonControlsEx

wintrust

WinVerifyTrust

msvcrt

sprintf
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
memset
_onexit
__dllonexit
_controlfp

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 440KB - Virtual size: 439KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ead2edcc6d89b3bd7e16d6c68e622af

Headers

File Characteristics

Imports

kernel32

user32

comctl32

wintrust

msvcrt

Sections

.text Size: 24KB - Virtual size: 20KB

.data Size: 440KB - Virtual size: 439KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 20KB

.data
Size: 440KB - Virtual size: 439KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 1KB