JaffaCakes118_632e262fe2476cdece213f683b0171d0

General

Target

JaffaCakes118_632e262fe2476cdece213f683b0171d0
Size

117KB
MD5

632e262fe2476cdece213f683b0171d0
SHA1

9490c083c7f5ef8c0ba5afecbaf05999b984698d
SHA256

fe9c251a5cd4b0b2f85cbd4420f7270773a7c288694933967888a4a69f025e05
SHA512

fcf71c7c1898c51a1a331ecbd2d7906c498b8d8049cf387a884842b84ffb54b984b00cdc582f29fe4b5cd9ebadcf0bc2c9521d0d245f6a25cae0c57a851aa2fc
SSDEEP

3072:2pqvSqwVL3YnsC7fIFaOlaXoqaeKi0SvogY95eZ:2pi6h+P7wxeKi0SvojA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_632e262fe2476cdece213f683b0171d0

Files

JaffaCakes118_632e262fe2476cdece213f683b0171d0
.exe windows:4 windows x86 arch:x86

348aa656a251017ade4befbb2426a408

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteConsoleW
lstrlenW
GetFileAttributesA
GetProcessHeap
VirtualQueryEx
GetStartupInfoA
AddAtomW
lstrcpyA
WriteConsoleW
DeleteFileA
HeapDestroy
GetDriveTypeW
GetModuleHandleA
VirtualProtect
GetPrivateProfileSectionW
WriteConsoleW
GetCommandLineA
CopyFileA
SetEvent
CancelIo
Sleep

mmcndmgr

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllRegisterServer

uxtheme

SetWindowTheme
GetThemeSysSize
DrawThemeBackground
GetThemeTextMetrics
IsThemeActive
DrawThemeEdge
GetThemeTextExtent
GetThemeBool
GetWindowTheme
CloseThemeData
CloseThemeData
OpenThemeData
GetThemeColor

Sections

.text
Size: 1024B - Virtual size: 855B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.impexp
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

348aa656a251017ade4befbb2426a408

Headers

File Characteristics

Imports

kernel32

mmcndmgr

uxtheme

Sections

.text Size: 1024B - Virtual size: 855B

.data Size: 3KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 296B

.rsrc Size: 111KB - Virtual size: 110KB

.rdata Size: 512B - Virtual size: 257B

.impexp Size: 512B - Virtual size: 112B

.text
Size: 1024B - Virtual size: 855B

.data
Size: 3KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 296B

.rsrc
Size: 111KB - Virtual size: 110KB

.rdata
Size: 512B - Virtual size: 257B

.impexp
Size: 512B - Virtual size: 112B