JaffaCakes118_8eee5c64b1b9c5812f10813f18482b0e

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_8eee5c64b1b9c5812f10813f18482b0e
Size

197KB
MD5

8eee5c64b1b9c5812f10813f18482b0e
SHA1

37061d0f7854d8ea4da82fae57259220d443d453
SHA256

ae89bed5c5051ef02e35aaede2e74ff99bed356c0d578a87c986b7365f5cdc49
SHA512

fffc94eb55e5d98aad2f7053d2e6cc0b094103595622506157684b4d17ca6299e14908dd36f787a7db9bf22ebd38a24b0993d77588ed2450860627ff8afb18c7
SSDEEP

6144:pC/kZEMoZ9tuFlo4E5ywAFbc3QcctEg2wBw:A/cEN9wo4CBAFbiDK2wa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_8eee5c64b1b9c5812f10813f18482b0e

Files

JaffaCakes118_8eee5c64b1b9c5812f10813f18482b0e
.exe windows:4 windows x86 arch:x86

29b56323f2d92a39999b71a71ee386d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA

ole32

CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

gdi32

CreateRectRgn
GetDeviceCaps
BitBlt
SetTextColor
SaveDC
DeleteObject
GetTextExtentPoint32A
RestoreDC
TextOutA
GetStockObject
DeleteMetaFile
SetBkMode
SelectObject
EnumFontFamiliesExA
CreateCompatibleDC
CreateFontIndirectA
Rectangle
CreateSolidBrush
GetObjectA
DeleteDC
CreateCompatibleBitmap

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

mciSendCommandA
sndPlaySoundA

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

SetWindowLongA
SetCursor
ReleaseCapture
GetSysColor
GetWindowInfo
GetWindowLongA
LoadCursorA
GetDC
MoveWindow
IsWindow
SetWindowPos
ReleaseDC
FillRect
GetDlgItem
SetCapture

kernel32

SetTapeParameters
Sleep
ClearCommError
FindClose
GetLocalTime
GetVersion
EnumResourceNamesA
GetCurrentProcessId
ExitProcess
GetWindowsDirectoryA
InterlockedExchange
FindFirstFileA

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

29b56323f2d92a39999b71a71ee386d5

Headers

File Characteristics

Imports

advapi32

ole32

shell32

gdi32

version

winmm

oleacc

user32

kernel32

Sections

.text Size: 160KB - Virtual size: 160KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 32KB - Virtual size: 32KB

.lib Size: 512B - Virtual size: 100KB

.text
Size: 160KB - Virtual size: 160KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 32KB - Virtual size: 32KB

.lib
Size: 512B - Virtual size: 100KB