JaffaCakes118_5a6d0bc7705baa7c6afddce4d1dfb6e0

General

Target

JaffaCakes118_5a6d0bc7705baa7c6afddce4d1dfb6e0
Size

114KB
MD5

5a6d0bc7705baa7c6afddce4d1dfb6e0
SHA1

01b2dc2cc54d2265948aae053940c6bc3c82c330
SHA256

2aea569e48e051bb6956edf071a035443932b4f5cc57efb4555bb099e2b6bb03
SHA512

baa51768588bbfebb9fcd0284cf35345542cf10ff8471d1077d90a8feb9e629143062b0d5414f608f1bd78008a8189b662909cb715d201696964ba8f7af20274
SSDEEP

1536:oRgE/3eSG2Or56xbnYV7HQjlnLha5AvVEJse2Mw4wSY6NEeSZTnBM+Qujw69qapl:Ug1xOnYwL8AdMthwtS7SVnBDQ3XkxK0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_5a6d0bc7705baa7c6afddce4d1dfb6e0

Files

JaffaCakes118_5a6d0bc7705baa7c6afddce4d1dfb6e0
.exe windows:4 windows x86 arch:x86

a0eed767f9b4d8c0c5f85d073ffba20e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomW
Sleep
GetProcessHeap
WriteConsoleW
SetEvent
HeapDestroy
DeleteFileA
CopyFileA
GetPrivateProfileSectionW
GetCommandLineA
GetDriveTypeW
WriteConsoleW
GetStartupInfoA
GetFileAttributesA
CancelIo
lstrlenW
GetModuleHandleA
VirtualProtect
WriteConsoleW
lstrcpyA
VirtualQueryEx

mmcndmgr

DllGetClassObject
DllRegisterServer
DllRegisterServer
DllCanUnloadNow

uxtheme

DrawThemeBackground
IsThemeActive
GetThemeSysSize
CloseThemeData
GetThemeTextMetrics
GetThemeColor
DrawThemeEdge
OpenThemeData
GetThemeTextExtent
CloseThemeData
GetWindowTheme
GetThemeBool
SetWindowTheme

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 83B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0eed767f9b4d8c0c5f85d073ffba20e

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 855B

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 108KB - Virtual size: 107KB

.rdata Size: 512B - Virtual size: 83B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1024B - Virtual size: 855B

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 108KB - Virtual size: 107KB

.rdata
Size: 512B - Virtual size: 83B

.impexp
Size: 512B - Virtual size: 112B