JaffaCakes118_7f57bb055fa2ec175d379c44a87c85b4

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_7f57bb055fa2ec175d379c44a87c85b4
Size

189KB
MD5

7f57bb055fa2ec175d379c44a87c85b4
SHA1

d9daee9400ec5ae2468f2be9651e86987fb7749d
SHA256

4db1a9b4a76c18d9ad024b51287ec586578ea6071f349a4cce573e43116e5de1
SHA512

868fc222ab90c04995a07810838e524c6d639c847a374cbc65dca118e549b4f70e91565e0bfbfd95d2cf51253671a14ecd9d9ee570be35f62d35601180d2be63
SSDEEP

3072:WfGeoZEG/GJQmcNOfq+3OCIfPZyXytHpML7zmhWjw8m9ct2BCXW+YBg:WftoZEd6tJPUCJMKhWjfm9n2Wng

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_7f57bb055fa2ec175d379c44a87c85b4

Files

JaffaCakes118_7f57bb055fa2ec175d379c44a87c85b4
.exe windows:4 windows x86 arch:x86

c057a225c17b478561ade6f735c1d2c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW

kernel32

IsValidCodePage
LoadLibraryA
SetUnhandledExceptionFilter
FlushFileBuffers
GetCPInfo
GetCurrentThreadId
WriteConsoleA
GetThreadPriority
SetEndOfFile
VirtualFree
WideCharToMultiByte
FreeEnvironmentStringsA
GetTickCount
HeapReAlloc
GetACP
GlobalAlloc
GetCommandLineA
TlsSetValue
GetOEMCP
VirtualAlloc
GetStringTypeW
EnterCriticalSection
InterlockedIncrement
GetEnvironmentStrings
EnumSystemLocalesA
GetLocaleInfoA
SetLastError
CloseHandle
GetCurrentProcess
RtlUnwind
SetFilePointer
SetCommTimeouts
GetModuleFileNameA
GetStdHandle
UnhandledExceptionFilter
GetConsoleMode
LeaveCriticalSection
HeapAlloc
InterlockedDecrement
GetFullPathNameW
FreeEnvironmentStringsW
GetCurrentDirectoryW
ExitProcess
GetProcAddress
EnumResourceNamesA
GetUserDefaultLCID
TlsFree
GetEnvironmentStringsW
LCMapStringW
GetVersionExA
Sleep
HeapSize
TlsGetValue
WriteConsoleW
ReadFile
TlsAlloc
InitializeCriticalSection
ExitProcess
GetProcessHeap
GetCurrentProcessId
TerminateProcess
IsValidLocale
HeapCreate
HeapDestroy
GetStringTypeA
SetHandleCount
WriteFile
GetConsoleOutputCP
GetStartupInfoA
MultiByteToWideChar
GetModuleFileNameW
GetLocaleInfoW
GetFileType
QueryPerformanceCounter
HeapFree
GetModuleHandleA
IsDebuggerPresent
CreateFileA
RaiseException
DeleteCriticalSection
LCMapStringA
GetConsoleCP
GetSystemTimeAsFileTime
GetLastError
SetStdHandle
GetFullPathNameA

rpcrt4

UuidCreate

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
StringFromGUID2
CoSetProxyBlanket

shell32

SHCreateDirectoryExW
SHFileOperationW
SHGetFolderPathW

shlwapi

SHDeleteKeyW

user32

GetClassLongA
MessageBoxW

Sections

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c057a225c17b478561ade6f735c1d2c7

Headers

File Characteristics

Imports

advapi32

kernel32

rpcrt4

ole32

shell32

shlwapi

user32

Sections

.text Size: 153KB - Virtual size: 153KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 31KB - Virtual size: 30KB

.crt Size: 512B - Virtual size: 88KB

.text
Size: 153KB - Virtual size: 153KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 31KB - Virtual size: 30KB

.crt
Size: 512B - Virtual size: 88KB