JaffaCakes118_42ffa5d96e0673b674aa73622207710c

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_42ffa5d96e0673b674aa73622207710c
Size

189KB
MD5

42ffa5d96e0673b674aa73622207710c
SHA1

08102975945c0a8ff848128cf7fe5ead6f0fddf1
SHA256

4ba7c00f964753f270ba73ff1efa1570c2fac277f22ec1a68627a6b06483ba32
SHA512

c4b868288acf103cad775ca8df570396fa3146e63548309a3273ea6e8cfdb64309ce4a0f8ff0bcccba0a9ac758303a668bca77dc8e58e59845d143ab2d196e3b
SSDEEP

3072:8i6AJt1Sw6M9E1siYUIqP6uhvHt6kmlB9/n/RUzOKaWg4En2mAAKy31lhrmAM2Ps:lluwh9rPqCuV4HP2zOKJmsy31rrmIkE6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_42ffa5d96e0673b674aa73622207710c

Files

JaffaCakes118_42ffa5d96e0673b674aa73622207710c
.exe windows:4 windows x86 arch:x86

a0d35dced14a76a3a83d2c7065575c7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

StringFromCLSID
CoUninitialize
CoCreateInstance
CoRegisterClassObject
CreateStreamOnHGlobal
GetRunningObjectTable
CoFreeUnusedLibraries
CLSIDFromString
StringFromGUID2
CoInitializeEx
CoTaskMemFree
CoRevokeClassObject
CoInitialize
CreateItemMoniker
CoTaskMemAlloc

winmm

timeBeginPeriod
timeGetTime
timeGetDevCaps
timeEndPeriod

kernel32

DeleteCriticalSection
ReleaseMutex
ResetEvent
CreateThread
LockResource
GetTapeParameters
QueryPerformanceCounter
ResumeThread
GetLastError
SetEvent
lstrlenA
WaitForSingleObject
VirtualAlloc
HeapFree
LocalFree
GetModuleFileNameA
LeaveCriticalSection
GetCurrentThreadId
GetVersionExA
LoadResource
ClearCommError
InterlockedDecrement
WaitForMultipleObjects
GetProcAddress
IsBadReadPtr
EnumResourceNamesA
GetModuleFileNameW
SetThreadPriority
GetCurrentProcessId
IsBadWritePtr
EnterCriticalSection
CreateEventA
LoadLibraryW
MultiByteToWideChar
ReleaseSemaphore
FindResourceA
GetACP
GetCurrentThread
CreateSemaphoreA
InitializeCriticalSection
GetExitCodeThread
CreateMutexA
GlobalAlloc
WideCharToMultiByte
VirtualFree
GetThreadPriority
DisableThreadLibraryCalls
FatalExit
FreeLibrary
GetTickCount
GetSystemTime
Sleep
GetProcessHeap
InterlockedIncrement
GetSystemTimeAsFileTime
GetSystemInfo
CloseHandle
CreateFileW
TerminateThread
LoadLibraryA
ExitProcess

advapi32

RegCreateKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueA
RegEnumKeyExA

user32

wvsprintfA
wsprintfA
MsgWaitForMultipleObjects
RegisterWindowMessageA
GetQueueStatus
GetMessageA
CreateWindowExA
PeekMessageA
LoadStringA
RegisterClassA
PostThreadMessageA
DispatchMessageA
MonitorFromWindow
CopyRect
DestroyWindow

shell32

SHGetSpecialFolderPathA

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0d35dced14a76a3a83d2c7065575c7b

Headers

File Characteristics

Imports

oleacc

ole32

winmm

kernel32

advapi32

user32

shell32

Sections

.text Size: 127KB - Virtual size: 126KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 57KB - Virtual size: 57KB

.lib Size: 512B - Virtual size: 112KB

.text
Size: 127KB - Virtual size: 126KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 57KB - Virtual size: 57KB

.lib
Size: 512B - Virtual size: 112KB