JaffaCakes118_0dd6b19a7ef9f56398f5cb3c703e035f

General

Target

JaffaCakes118_0dd6b19a7ef9f56398f5cb3c703e035f
Size

155KB
MD5

0dd6b19a7ef9f56398f5cb3c703e035f
SHA1

6f4cfc9cc5273d6e9460cfa3eac890026ac5e89a
SHA256

ae83c5be037577cfecc84e6c98bbe97a867fb2c648f831cc3c6d3633c3c2cec1
SHA512

5da0941b25b8fe9e2eb23d4dcf572bd7730b0d7e9abdc88be9d11f25e88d0685371fc26fb569b7708a35ca6327c177e3bf5ae2c81162590be15ff19365d99b9b
SSDEEP

3072:/5YVCJkl1Af507pT20o1sP2FR4JCi8o0BmM6JBpaSg0d2FOoYj2XFo7J:eVnlo1sP2UgicmHIn0dmAj4y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_0dd6b19a7ef9f56398f5cb3c703e035f

Files

JaffaCakes118_0dd6b19a7ef9f56398f5cb3c703e035f
.exe windows:4 windows x86 arch:x86

e0d5f4b07e3bf55fc8b811bdae7b9243

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

shlwapi

PathCombineW
PathFileExistsW

kernel32

lstrcpyA
InitializeCriticalSection
GlobalFree
lstrcpyA
GlobalAlloc
GetProcessId
GetTickCount
lstrcpyW
lstrcmpiW
lstrlenW
FindClose
EnumResourceNamesW
GetACP
CreateFileMappingW
MultiByteToWideChar
WideCharToMultiByte
FreeEnvironmentStringsW
GetCPInfo
GetLastError
LockResource
OutputDebugStringW
GetModuleHandleW

user32

TranslateMessage
GetMessageW
PostThreadMessageW
wsprintfW
GetDC
CharNextW
CharUpperW
SetTimer
DispatchMessageW
SendMessageA
KillTimer
UnregisterClassA

oleacc

LresultFromObject
CreateStdAccessibleObject

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegCloseKey
RegQueryInfoKeyW
RegDeleteKeyW
RegSetValueExW

ole32

CoRevokeClassObject
CoTaskMemAlloc
CoRegisterClassObject
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemFree
CoTaskMemRealloc
StringFromGUID2
StringFromCLSID

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0d5f4b07e3bf55fc8b811bdae7b9243

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

oleacc

advapi32

ole32

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 55KB - Virtual size: 55KB

.isete Size: 1024B - Virtual size: 104KB

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 55KB - Virtual size: 55KB

.isete
Size: 1024B - Virtual size: 104KB