JaffaCakes118_49c246c901fe43763bb0d4b427af132a

General

Target

JaffaCakes118_49c246c901fe43763bb0d4b427af132a
Size

171KB
MD5

49c246c901fe43763bb0d4b427af132a
SHA1

1ca81d7ff46a1c029b8174732be1b44e0c26a25c
SHA256

a3e1a94b736bc9d8c180747920b6700ef3dfe5764b920ec8798dd97055ab8f47
SHA512

16fcfad04965d4572f1cf517c5ac9e54b6bddd6999a1a1f2207f2b0aad5d8d47f4d6aedb595b1c2c915ef57c81d135f88d5500fcba69a224e1e579b198065049
SSDEEP

3072:DSl/g5OWnlF/ABgkKYOoJlAmrQIfO4lMMrbWV:uZgln7ABXKY3QqpHrb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_49c246c901fe43763bb0d4b427af132a

Files

JaffaCakes118_49c246c901fe43763bb0d4b427af132a
.exe windows:4 windows x86 arch:x86

d9e4565f62cf49f3fdc17b5d1e93c3ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCursor
SetWindowPos
GetSysColor
IsWindow
GetDlgItem
GetWindowLongA
ReleaseCapture
ReleaseDC
SetWindowLongA
MoveWindow
FillRect
LoadCursorA
GetDC
GetWindowInfo
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

oleacc

LresultFromObject
CreateStdAccessibleObject

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetCalendarInfoW
CreateProcessA
WriteFile
WideCharToMultiByte
GetEnvironmentVariableA
GetLocaleInfoA
HeapFree
LocalAlloc
CloseHandle
UnhandledExceptionFilter
RaiseException
GetStdHandle
HeapAlloc
LoadLibraryW
HeapSize
GetACP
GetSystemTime
IsDebuggerPresent
GetProcessHeap
SetUnhandledExceptionFilter
QueryPerformanceCounter
TerminateProcess
HeapReAlloc
InterlockedExchange
MultiByteToWideChar
EnumResourceNamesA
FindFirstFileW
GetCurrentThreadId
GetTickCount
GetCurrentProcessId
InterlockedCompareExchange
GetStartupInfoA
HeapDestroy
Sleep
lstrlenA
GetThreadLocale
CreateFileW
GetModuleHandleA
SystemTimeToFileTime
GetSystemTimeAsFileTime
lstrlenW
GetCurrentProcess
LoadLibraryExW
lstrcpynW

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9e4565f62cf49f3fdc17b5d1e93c3ad

Headers

File Characteristics

Imports

user32

winmm

oleacc

version

kernel32

ole32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 74KB - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 248KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 74KB - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 248KB