JaffaCakes118_8b1a87bb29a899a517111137b23e62cb

General

Target

JaffaCakes118_8b1a87bb29a899a517111137b23e62cb
Size

164KB
MD5

8b1a87bb29a899a517111137b23e62cb
SHA1

e7d186ab00409c0e1a3f6457f1667e0b729fd47f
SHA256

4c8ae591040897908e21a857126d6a7f0854c1a911d9c3df8a4cce867823e0b4
SHA512

5d4e85e9cdd200e8d2a0686dad4ffe585aa68c70100402b076f1335209272582432a1be29ac1c4769ff68da965ccd6bb070870206d0c3f9a72fe5e95bfc08cfe
SSDEEP

3072:WaCFJSCDpb6xi2lQB32wR9wxMfBjXFJFMjnagBDBKuYjeHdI/fAUJzrGByfjcbLt:wFdDkxA8aX27ZDEuiQwfYLt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_8b1a87bb29a899a517111137b23e62cb

Files

JaffaCakes118_8b1a87bb29a899a517111137b23e62cb
.exe windows:4 windows x86 arch:x86

bebf3d5a542c7478ca8ddb06f81e58e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

GetSystemTime
HeapAlloc
GetACP
GetModuleHandleA
GetCalendarInfoW
GetCurrentProcessId
HeapReAlloc
QueryPerformanceCounter
MultiByteToWideChar
IsDebuggerPresent
WriteFile
GetStdHandle
LoadLibraryExW
CreateProcessA
LocalAlloc
InterlockedExchange
WideCharToMultiByte
CloseHandle
CreateFileW
SetUnhandledExceptionFilter
TerminateProcess
HeapDestroy
GetProcessHeap
EnumResourceNamesA
GetSystemTimeAsFileTime
GetTickCount
GetStartupInfoA
GetThreadLocale
Sleep
LoadLibraryW
HeapFree
HeapSize
FindFirstFileW
lstrlenW
lstrlenA
GetCurrentProcess
UnhandledExceptionFilter
GetCurrentThreadId
GetEnvironmentVariableA
InterlockedCompareExchange
GetLocaleInfoA
SystemTimeToFileTime
RaiseException
lstrcpynW

user32

SetWindowLongA
FillRect
MoveWindow
SetCursor
ReleaseCapture
GetDlgItem
GetDC
GetWindowInfo
GetSysColor
IsWindow
GetWindowLongA
ReleaseDC
SetWindowPos
LoadCursorA
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bebf3d5a542c7478ca8ddb06f81e58e3

Headers

File Characteristics

Imports

ole32

oleacc

kernel32

user32

winmm

version

Sections

.text Size: 88KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 71KB - Virtual size: 71KB

.rsrc Size: 1024B - Virtual size: 100KB

.text
Size: 88KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 71KB - Virtual size: 71KB

.rsrc
Size: 1024B - Virtual size: 100KB