JaffaCakes118_659e0b486eb84e17b894ad58aed7dea0

General

Target

JaffaCakes118_659e0b486eb84e17b894ad58aed7dea0
Size

118KB
MD5

659e0b486eb84e17b894ad58aed7dea0
SHA1

c9dc28c52c3e1d1c40ed09633d7be870132a60d2
SHA256

335e7fa4182d7b278beea58a6d0628765f8fde28e40cae800c22ff1c3364a192
SHA512

db96753c57aa62e0e98a3b8720a8e2c3e14f4bb0671541ba5124de706b60131a2fac6e56eee57c349e620e164290c268a091c3b32687d71f1d320f84532e5dd2
SSDEEP

1536:eMIt9tcvXayb2ZjNlyU8GLGypd1HTQFD+p0M8G2Dx72eEILRokPFqRqtJFLTMZ:eMIgwjNl+GLG3ayM8GoEILRoERBY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_659e0b486eb84e17b894ad58aed7dea0

Files

JaffaCakes118_659e0b486eb84e17b894ad58aed7dea0
.exe windows:4 windows x86 arch:x86

88e044b3a3a09c46f381b98e1ec6cb91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetCurrentDirectoryW
lstrcpyA
SetFileAttributesW
GetLocalTime
CreateMutexA
GetLastError
SetFileTime
CloseHandle
ReadFile
lstrcatA
HeapCreate
SetFileTime
IsBadStringPtrW
InitializeCriticalSection
LeaveCriticalSection
GetFileSize
GetStartupInfoW
FindResourceA
FormatMessageA
SetFileTime
GetModuleHandleA

msi

MsiAdvertiseProductA
MsiCloseHandle
MsiCreateRecord
MsiCloseAllHandles

user32

wsprintfW
IsDialogMessageA
SetCursorPos
IsWindow
PostMessageW
PeekMessageW
LoadCursorW
DispatchMessageA
IsZoomed
GetWindowRect
SetFocus
GetWindowTextA
GetWindowLongW

wldap32

ldap_add

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 1024B - Virtual size: 211B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 161B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

88e044b3a3a09c46f381b98e1ec6cb91

Headers

File Characteristics

Imports

kernel32

msi

user32

wldap32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 103KB - Virtual size: 103KB

.data1 Size: 1024B - Virtual size: 211B

.data2 Size: 512B - Virtual size: 161B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 103KB - Virtual size: 103KB

.data1
Size: 1024B - Virtual size: 211B

.data2
Size: 512B - Virtual size: 161B