JaffaCakes118_28a4ff439567acdcb7edf44dfce76b64

General

Target

JaffaCakes118_28a4ff439567acdcb7edf44dfce76b64
Size

167KB
MD5

28a4ff439567acdcb7edf44dfce76b64
SHA1

69efb46b74cee2a413e430040b04381d5dc08596
SHA256

69d353e51b6670af251cd9ae4f63a1562ea1d15c93d87cfb68ec2dc74465ceff
SHA512

1f9dad360f79f47bd638e90f9577e225de081e8dba8479e939636e41cb159c5e630b33057c554c2c0be5edefafcc3d82d4e38c70f7fc5c2c49a3a4a572077cab
SSDEEP

3072:3LMfUkXbpteqoAM8I72E3Pbl5a161RbzbzLvcxXnrOvoz1BALtABzAW6Bl/OZ:7WX1tLIS+Du6zbvchrOvaoiMtBlW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_28a4ff439567acdcb7edf44dfce76b64

Files

JaffaCakes118_28a4ff439567acdcb7edf44dfce76b64
.exe windows:4 windows x86 arch:x86

7db016a4c0a67af1956c80258e016d06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW

user32

GetClassLongA
MessageBoxW

rpcrt4

UuidCreate

shell32

SHFileOperationW
SHCreateDirectoryExW
SHGetFolderPathW

kernel32

WideCharToMultiByte
IsValidCodePage
GetThreadPriority
RtlUnwind
SetEndOfFile
GetModuleFileNameW
HeapFree
GetFullPathNameW
SetUnhandledExceptionFilter
GetProcAddress
WriteConsoleW
TerminateProcess
HeapSize
HeapAlloc
MultiByteToWideChar
ExitProcess
SetCommConfig
DeleteCriticalSection
InterlockedDecrement
UnhandledExceptionFilter
Sleep
LCMapStringA
GetCurrentThreadId
GetVersionExA
SetStdHandle
EnumResourceNamesA
WriteFile
WriteConsoleA
IsDebuggerPresent
GetLocaleInfoW
CloseHandle
LeaveCriticalSection
GetModuleHandleA
EnumSystemLocalesA
GetCPInfo
GetConsoleOutputCP
GetProcessHeap
GetLastError
IsValidLocale
ExitProcess
GetCurrentProcess
InterlockedIncrement
GetUserDefaultLCID
GetCommandLineA
GlobalAlloc
RaiseException
InitializeCriticalSection
LCMapStringW
CreateFileA
HeapReAlloc
ReadFile
EnterCriticalSection
GetCurrentDirectoryW
GetFullPathNameA

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7db016a4c0a67af1956c80258e016d06

Headers

File Characteristics

Imports

advapi32

user32

rpcrt4

shell32

kernel32

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 27KB - Virtual size: 26KB

.crt Size: 512B - Virtual size: 72KB

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 27KB - Virtual size: 26KB

.crt
Size: 512B - Virtual size: 72KB