JaffaCakes118_77bc66c8866219b0866640c4e6f90aaf

General

Target

JaffaCakes118_77bc66c8866219b0866640c4e6f90aaf
Size

167KB
MD5

77bc66c8866219b0866640c4e6f90aaf
SHA1

d1d894d3f849f82daec0626b8ff4658b09ef557f
SHA256

322d841455b742ccf34a513e9026a9388d6b9a6253e8c93f20a74401e6143b87
SHA512

a98a6cf3ebdf93466cc9cb84de6242ca51ce5403a2a74d737500edb81eeb5ec67d712f297f2be048855bcdf3a9ea4a7d0419602102ffd8c3d4f1da37003e9226
SSDEEP

3072:3//Sxak3diPM3JwOy8fCoG3o9ZCZBhWBJPqv2cJdTs6G0Bm7mK6WyWNH:3/a2k3KK6v6wUJqecvY9yKxZH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_77bc66c8866219b0866640c4e6f90aaf

Files

JaffaCakes118_77bc66c8866219b0866640c4e6f90aaf
.exe windows:4 windows x86 arch:x86

35ffa1eac24e7de11e56e05af8cbab52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

AlphaBlend
TransparentBlt

kernel32

GetCPInfoExW
FreeEnvironmentStringsA
EnterCriticalSection
GetFileType
GetThreadLocale
GetLastError
lstrlenW
GetLocaleInfoA
SetHandleCount
InitializeCriticalSection
MultiByteToWideChar
DeleteCriticalSection
InterlockedIncrement
GetStartupInfoA
FreeEnvironmentStringsW
HeapSize
GetOEMCP
UnhandledExceptionFilter
GetCPInfo
EnumResourceTypesA
WriteFile
TlsSetValue
QueryPerformanceCounter
GetACP
GetTickCount
GetVersionExA
GetComputerNameW
GetEnvironmentStrings
RaiseException
WideCharToMultiByte
LeaveCriticalSection
InterlockedExchange
GetEnvironmentStringsW
GetStdHandle
TlsGetValue
GetCurrentProcessId

shell32

SHGetFolderPathW

ole32

CoGetMalloc
CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemRealloc

gdi32

SelectObject
DeleteObject
GetTextExtentPointA
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35ffa1eac24e7de11e56e05af8cbab52

Headers

File Characteristics

Imports

msimg32

kernel32

shell32

ole32

gdi32

newdev

Sections

.text Size: 96KB - Virtual size: 95KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 67KB - Virtual size: 67KB

.reloc Size: 1024B - Virtual size: 108KB

.text
Size: 96KB - Virtual size: 95KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 67KB - Virtual size: 67KB

.reloc
Size: 1024B - Virtual size: 108KB