JaffaCakes118_7f52f796ddf5cdd2a86d2d036fc70304

General

Target

JaffaCakes118_7f52f796ddf5cdd2a86d2d036fc70304
Size

200KB
MD5

7f52f796ddf5cdd2a86d2d036fc70304
SHA1

06f73ff2fc2df4d78a1c17831c350183773f8299
SHA256

691500c0c35428fc9129a6fa731ff04be50e07091bc1e5141533e6b68760d2b3
SHA512

06f0c9c4ec89f491e18421efc108b9989fee93eaa1927ca00337f0fb454042a0f54841b98c7f64bcb21ac3f4bbe9234ca4473c9f9b909cd6f0a4ace94c2c6ee4
SSDEEP

6144:18YTDg9t8RNT8e553ilqkSraOp8ClrtxSqrD:1s9t8TpeDJO7lRQk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7f52f796ddf5cdd2a86d2d036fc70304

Files

JaffaCakes118_7f52f796ddf5cdd2a86d2d036fc70304
.exe windows:4 windows x86 arch:x86

46ef9886ef5c40d4047cad8eb04ca129

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegEnumValueA
CryptEncrypt
CryptHashData
RegDeleteValueA
RegEnumKeyExA
CryptDestroyHash
RegQueryValueExA
RegOpenKeyExA
CryptCreateHash
CryptReleaseContext
RegSetValueExA
CryptDestroyKey
RegCreateKeyExA
CryptGetHashParam
CryptImportKey
GetUserNameA
RegCloseKey

winmm

timeGetTime
timeSetEvent

user32

GetQueueStatus
ShowWindow
RegisterWindowMessageA
wsprintfA
GetDC
ReleaseDC
MsgWaitForMultipleObjects
GetDesktopWindow
RealGetWindowClassA
PeekMessageA
PostThreadMessageA
CreateDialogParamA
DispatchMessageA
DestroyWindow
wvsprintfA

setupapi

SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

GetCurrentThreadId
CreateFiberEx
SetThreadPriority
VirtualFree
CancelIo
GetCurrentThread
EnumResourceNamesW
GetTickCount
IsBadReadPtr
GetSystemTime
GetACP
FlushFileBuffers
GetThreadPriority
GetLastError
WaitForMultipleObjects
CreateSemaphoreA

wininet

InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46ef9886ef5c40d4047cad8eb04ca129

Headers

File Characteristics

Imports

advapi32

winmm

user32

setupapi

kernel32

wininet

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 16KB - Virtual size: 16KB

.tls Size: 512B - Virtual size: 352KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 16KB - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 352KB