JaffaCakes118_2a4adabf4dc4332b62ccebb92d2c05f5

General

Target

JaffaCakes118_2a4adabf4dc4332b62ccebb92d2c05f5
Size

277KB
MD5

2a4adabf4dc4332b62ccebb92d2c05f5
SHA1

bb7ac273fd5b87ce0fd4164a5fcb950ada9c5108
SHA256

4b6c7aee83d8bfece50dbd35751fc39a56b19fb89105b969b80f82b0cf1faa9b
SHA512

d8910957d9bfca27e2f4ab5c4031c975c69ba611099cd655a0b6196d0ade512ae53dae8c433f85fc8cd525f570ed75f20af648e9476f9a2835ea3cff8e69df2b
SSDEEP

6144:Ov1mQOf70/6XslCUk/OaLL/zS2RAzBMdJK9BnJa93e95u:i1mQU0SXICh/zLRAXBN9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_2a4adabf4dc4332b62ccebb92d2c05f5

Files

JaffaCakes118_2a4adabf4dc4332b62ccebb92d2c05f5
.exe windows:4 windows x86 arch:x86

64c358200df9141f56d68531ad9d3b6f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

GetFileType
GlobalAddAtomW
HeapCreate
IsBadReadPtr
SetHandleCount
HeapReAlloc
GetModuleFileNameA
GetCPInfo
FreeEnvironmentStringsA
FatalAppExitA
GetACP
SetFilePointer
GetEnvironmentStrings
WriteFile
SetUnhandledExceptionFilter
VirtualAlloc
WideCharToMultiByte
IsBadCodePtr
EnumResourceNamesA
FreeEnvironmentStringsW
GetEnvironmentVariableA
GetDateFormatW
HeapDestroy
SetConsoleCtrlHandler
UnhandledExceptionFilter
GetEnvironmentStringsW
GetOEMCP
GetStdHandle
IsBadWritePtr
VirtualFree
GetStartupInfoA
GetCurrentThread

gdi32

GetGraphicsMode
PolylineTo
MoveToEx
IntersectClipRect
GetStockObject
LineTo
SetGraphicsMode
SetROP2
Rectangle
SetBrushOrgEx
PolyBezierTo
CloseFigure
GetClipBox
SelectClipPath
FillPath
GetWorldTransform
BeginPath
EndPath
CreatePatternBrush
PolyDraw

Sections

.text
Size: 147KB - Virtual size: 279KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64c358200df9141f56d68531ad9d3b6f

Headers

File Characteristics

Imports

setupapi

kernel32

gdi32

Sections

.text Size: 147KB - Virtual size: 279KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 125KB - Virtual size: 125KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 147KB - Virtual size: 279KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 125KB - Virtual size: 125KB

.rsrc
Size: 1024B - Virtual size: 4KB