JaffaCakes118_9265ce4b240f3c281fd87c1dc632c669

General

Target

JaffaCakes118_9265ce4b240f3c281fd87c1dc632c669
Size

181KB
MD5

9265ce4b240f3c281fd87c1dc632c669
SHA1

daa047702af56feb0cbbd4967a8e935222d187dd
SHA256

a30f67a26663ebc6973317fe0354660e1b7beb4c4d8b04108a5ea3a6d3fbc9d6
SHA512

3a8e82644bd1b0b890213fe6094781f1221812947913f593ef8a37310485ff99987fa6cfa99d2b0b56e95af479121a250822484dfa23c055485d4e601ae2a5b4
SSDEEP

3072:a6SZtSiXmafJzHfpJvyyY3a2XiIAusM6eUKZ7WJblQ/U:a6KSiWaf8y+yIt6eBYw8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9265ce4b240f3c281fd87c1dc632c669

Files

JaffaCakes118_9265ce4b240f3c281fd87c1dc632c669
.exe windows:4 windows x86 arch:x86

dae4f92434d5634148b1c3b9d06e00a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mciSendCommandA
sndPlaySoundA

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

IsWindow
SetWindowLongA
ReleaseCapture
SetCursor
ReleaseDC
GetDC
GetWindowLongA
MoveWindow
GetWindowInfo
LoadCursorA
GetDlgItem
SetWindowPos
GetSysColor
FillRect
SetCapture

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

GetThreadLocale
LoadLibraryW
UnhandledExceptionFilter
HeapFree
HeapAlloc
HeapSize
GetCalendarInfoW
CreateFileW
GetEnvironmentVariableA
GetModuleHandleA
HeapReAlloc
CreateProcessA
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
GetStdHandle
Sleep
LocalAlloc
WriteFile
lstrlenW
TerminateProcess
EnumResourceNamesA
GetSystemTime
GetACP
GetSystemTimeAsFileTime
SystemTimeToFileTime
GetLocaleInfoA
lstrlenA
FindFirstFileW
LoadLibraryExW
MultiByteToWideChar
InterlockedCompareExchange
GetCurrentProcess
QueryPerformanceCounter
GetProcessHeap
GetCurrentThreadId
RaiseException
GetCurrentProcessId
CloseHandle
InterlockedExchange
HeapDestroy
GetTickCount
WideCharToMultiByte
lstrcpynW

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dae4f92434d5634148b1c3b9d06e00a2

Headers

File Characteristics

Imports

winmm

oleacc

user32

ole32

kernel32

version

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 80KB - Virtual size: 80KB

.rsrc Size: 1024B - Virtual size: 120KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 80KB - Virtual size: 80KB

.rsrc
Size: 1024B - Virtual size: 120KB