JaffaCakes118_685a16e5561b8a0e821c19869fbda726

General

Target

JaffaCakes118_685a16e5561b8a0e821c19869fbda726
Size

178KB
MD5

685a16e5561b8a0e821c19869fbda726
SHA1

31d91ac30b93bbbd272d7f437f07e9e127b78ef8
SHA256

aa6a148220ba43ed6c86f81eabd09c864d47f0392e12c0440f3205caef80a3d5
SHA512

c15542aa4a63ae3c5e906ef312f9ed873cc0acb0b5ebb3e30c9045e752b0de0adeb51c2fb9e466dbb88ec7565bfda69ce4d1d13f1ce54dab4632f4415e4dd715
SSDEEP

3072:EQBVyS6IvAFI+KEpHxbupiw/CPNfPA01GNaP0GXLrsv5c5IY81fpPXkxLF2ukO5I:EWywv81dupieEA01C2Xsve5IY81fpPq9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_685a16e5561b8a0e821c19869fbda726

Files

JaffaCakes118_685a16e5561b8a0e821c19869fbda726
.exe windows:4 windows x86 arch:x86

3cd81f6f42be426c8c24aaaf6d3dd179

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetTextMetricsA
GetDeviceCaps
GetTextExtentPointA
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

msimg32

AlphaBlend
TransparentBlt

shell32

SHGetFolderPathW

ole32

CoGetTreatAsClass
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc

kernel32

GetTickCount
RaiseException
GetACP
GetLocaleInfoA
lstrlenW
GetCPInfoExW
GetOEMCP
EnterCriticalSection
TlsGetValue
InterlockedIncrement
GetCPInfo
GetVersionExA
GetFileType
GetStartupInfoA
GetEnvironmentStringsW
InitializeCriticalSection
EnumResourceTypesA
TlsSetValue
LeaveCriticalSection
MultiByteToWideChar
SetHandleCount
GetLastError
HeapSize
GetEnvironmentStrings
GetThreadLocale
GetLogicalDriveStringsA
GetStdHandle
QueryPerformanceCounter
FreeEnvironmentStringsW
InterlockedExchange
UnhandledExceptionFilter
DeleteCriticalSection
FreeEnvironmentStringsA
WideCharToMultiByte
WriteFile
GetCurrentProcessId

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cd81f6f42be426c8c24aaaf6d3dd179

Headers

File Characteristics

Imports

gdi32

newdev

msimg32

shell32

ole32

kernel32

Sections

.text Size: 106KB - Virtual size: 106KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 67KB - Virtual size: 67KB

.reloc Size: 1024B - Virtual size: 256KB

.text
Size: 106KB - Virtual size: 106KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 67KB - Virtual size: 67KB

.reloc
Size: 1024B - Virtual size: 256KB