JaffaCakes118_617cbbefd15e6c358d640d5d7befab72

General

Target

JaffaCakes118_617cbbefd15e6c358d640d5d7befab72
Size

164KB
MD5

617cbbefd15e6c358d640d5d7befab72
SHA1

86a567ac4e966fd1442c866fb8e335914eb62109
SHA256

7ce5e5a51e5fe662b5c359ea11af3c88b7e2e71b5f63583c989ca1ca1fe3e7ff
SHA512

9f620b691f05b6b78502fd88f2bf1f152b54363aab4a54a0dd70e0ca400da8b7e45e3ac58e2dc149371fab73e1da6d5bd97c8769e2f386ddef26395d040b5da6
SSDEEP

3072:JtOBwK0TlLm8lirVlOJARb1X28BVmXIVWTjj3vfo69c:J8BO61ZlnzuXIVyHI6+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_617cbbefd15e6c358d640d5d7befab72

Files

JaffaCakes118_617cbbefd15e6c358d640d5d7befab72
.exe windows:4 windows x86 arch:x86

b24a0f7852654bec38bd98b73c23715f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseCapture
GetDC
GetWindowInfo
SetCursor
ReleaseDC
GetWindowLongA
IsWindow
LoadCursorA
SetWindowLongA
FillRect
SetWindowPos
GetDlgItem
MoveWindow
GetSysColor
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetCurrentProcess
Sleep
GetCalendarInfoW
CreateProcessA
HeapAlloc
GetSystemTimeAsFileTime
LoadLibraryExW
UnhandledExceptionFilter
MultiByteToWideChar
WriteFile
GetStartupInfoA
CreateFileW
QueryPerformanceCounter
GetSystemTime
HeapDestroy
GetStdHandle
CloseHandle
GetProcessHeap
EnumResourceNamesA
LoadLibraryW
GetThreadLocale
GetCurrentThreadId
TerminateProcess
SetUnhandledExceptionFilter
LocalAlloc
IsDebuggerPresent
GetTickCount
HeapSize
FindFirstFileW
InterlockedExchange
GetLocaleInfoA
HeapFree
lstrlenA
lstrlenW
SystemTimeToFileTime
GetACP
HeapReAlloc
InterlockedCompareExchange
GetEnvironmentVariableA
GetModuleHandleA
GetCurrentProcessId
RaiseException
WideCharToMultiByte
lstrcpynW

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b24a0f7852654bec38bd98b73c23715f

Headers

File Characteristics

Imports

user32

winmm

version

kernel32

oleacc

ole32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 67KB - Virtual size: 66KB

.rsrc Size: 1024B - Virtual size: 100KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 67KB - Virtual size: 66KB

.rsrc
Size: 1024B - Virtual size: 100KB