JaffaCakes118_60689001ebbedb484e36c115ee23aa10

General

Target

JaffaCakes118_60689001ebbedb484e36c115ee23aa10
Size

113KB
MD5

60689001ebbedb484e36c115ee23aa10
SHA1

08301e0e5aae909b814aae3fa8beb68500fb5935
SHA256

3156c1b5620b664ce220c42ea9878ecc3332bc593c62a095d1136c410953a910
SHA512

1c10db6e6def97595382636fe6cdd357a0e309edc2a4ec22dbd4a2cc6b68a883fb1f56694240dce4c246ffa9ee2e78c60746d9fae6dacde0e67294ace01a9269
SSDEEP

3072:i+/T4q3iyhCbSzPRZVXpAHyPBO9grBIOQfuDnQu:iY8qSQCbSz5ZVXIKBO9yBIO+i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_60689001ebbedb484e36c115ee23aa10

Files

JaffaCakes118_60689001ebbedb484e36c115ee23aa10
.exe windows:4 windows x86 arch:x86

83426db32c8417502c7995eba12ca5c4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetProcessHeap
DeleteFileA
GetFileAttributesA
WriteConsoleW
lstrlenW
GetPrivateProfileSectionW
Sleep
SetEvent
lstrcpyA
HeapDestroy
GetDriveTypeW
CopyFileA
GetCommandLineA
GetStartupInfoA
WriteConsoleW
CancelIo
WriteConsoleW
VirtualProtect
VirtualQueryEx
AddAtomW
GetModuleHandleA

mmcndmgr

DllCanUnloadNow
DllRegisterServer
DllRegisterServer
DllGetClassObject

uxtheme

OpenThemeData
DrawThemeEdge
GetWindowTheme
GetThemeColor
GetThemeTextExtent
SetWindowTheme
GetThemeSysSize
DrawThemeBackground
GetThemeBool
CloseThemeData
CloseThemeData
GetThemeTextMetrics
IsThemeActive

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 83B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.export
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83426db32c8417502c7995eba12ca5c4

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 855B

.data Size: 2KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 274B

.rsrc Size: 108KB - Virtual size: 107KB

.rdata Size: 512B - Virtual size: 83B

.export Size: 512B - Virtual size: 112B

.text
Size: 1024B - Virtual size: 855B

.data
Size: 2KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 274B

.rsrc
Size: 108KB - Virtual size: 107KB

.rdata
Size: 512B - Virtual size: 83B

.export
Size: 512B - Virtual size: 112B