JaffaCakes118_4d0178ef0fb77976b1e307e2f0248086

General

Target

JaffaCakes118_4d0178ef0fb77976b1e307e2f0248086
Size

176KB
MD5

4d0178ef0fb77976b1e307e2f0248086
SHA1

55e589ce232b74cef4d9cf17810b785af071140c
SHA256

71d27aeddb1fb19fc99bb1c0e116fc71bde13a8d6ef108e165a2fb7c83a62cf9
SHA512

12a3fbcf97182d4bf347652105561973bebea5d9ce99e9056d2ba327ec9497ccfc30cfc7f90db2e4a22c29dd6d7355471dbe1ca6b924c5f129ba6f9fa64d0553
SSDEEP

3072:Ih2uSGyG0clIGwsVr8WJ/jwmNnV9T8cLuOwJfyTlkYD59yfG6a:IhpSHYlJ5fcQSHOgfyhkYDHwGz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_4d0178ef0fb77976b1e307e2f0248086

Files

JaffaCakes118_4d0178ef0fb77976b1e307e2f0248086
.exe windows:4 windows x86 arch:x86

69103f7e428e3676d9d496934b9452bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
SetUnhandledExceptionFilter
LocalAlloc
GetCalendarInfoW
GetLocaleInfoA
WriteFile
HeapAlloc
HeapReAlloc
TerminateProcess
RaiseException
GetACP
CreateFileW
GetTickCount
GetModuleHandleA
CloseHandle
GetCurrentProcess
HeapDestroy
HeapFree
InterlockedExchange
GetCurrentProcessId
CreateProcessA
UnhandledExceptionFilter
EnumResourceNamesA
Sleep
GetSystemTime
lstrlenW
WideCharToMultiByte
GetProcessHeap
QueryPerformanceCounter
LoadLibraryExW
LoadLibraryW
MultiByteToWideChar
lstrlenA
FindFirstFileW
SystemTimeToFileTime
InterlockedCompareExchange
GetStartupInfoA
GetEnvironmentVariableA
GetThreadLocale
IsDebuggerPresent
GetCurrentThreadId
GetStdHandle
GetSystemTimeAsFileTime
lstrcpynW

user32

SetWindowLongA
IsWindow
GetWindowInfo
GetWindowLongA
GetDlgItem
ReleaseCapture
MoveWindow
SetCursor
FillRect
GetDC
GetSysColor
ReleaseDC
SetWindowPos
LoadCursorA
SetCapture

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69103f7e428e3676d9d496934b9452bd

Headers

File Characteristics

Imports

kernel32

user32

version

oleacc

ole32

winmm

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 74KB - Virtual size: 73KB

.rsrc Size: 1024B - Virtual size: 256KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 74KB - Virtual size: 73KB

.rsrc
Size: 1024B - Virtual size: 256KB