JaffaCakes118_9c084643ea35347f4caffb2faed788dd

General

Target

JaffaCakes118_9c084643ea35347f4caffb2faed788dd
Size

188KB
MD5

9c084643ea35347f4caffb2faed788dd
SHA1

b722f3041ad0ac0140d84e0ba844621459de1e0d
SHA256

4f37e103fecbc46d2551227ba4057794cb25ea637c567de209d8aa2d8886eb6a
SHA512

f24a01459a40ed35850621e3c97b496642a8d3daeb4fa3335ce9d529c56ddc2ccd60eca0412bca47b8b05953163224fdaff2442ebdc710dc03818a7f32d5af25
SSDEEP

3072:TkPtPMf8xixTij41SZnzTfjAFNn1QdZM9IO6y+u9wDeJi77xCiXV5+1vt/FaVe67:TkVPM+KI1zjjPdZMxFg7hWFtYDH6WGuG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9c084643ea35347f4caffb2faed788dd

Files

JaffaCakes118_9c084643ea35347f4caffb2faed788dd
.exe windows:4 windows x86 arch:x86

78926b21157f62ce8e56222feb29f98a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
GetOEMCP
LCMapStringW
FlushFileBuffers
SetProcessAffinityMask
GetStringTypeW
MoveFileW
GetSystemTimeAsFileTime
DeleteCriticalSection
CreateProcessW
GetCurrentProcessId
GetEnvironmentStrings
InterlockedDecrement
WaitForSingleObject
QueryPerformanceCounter
ReadFile
GlobalLock
FreeEnvironmentStringsW
GetStringTypeA
FreeEnvironmentStringsA
OutputDebugStringW
GetConsoleOutputCP
CreateEventW
GetLocalTime
EnumResourceTypesA
SetEndOfFile
GetACP
GetModuleFileNameW
SetStdHandle
Sleep
GetCPInfo
CreateFileW
GetLocaleInfoA
IsValidCodePage
InterlockedIncrement
WriteConsoleA
SetNamedPipeHandleState
GetEnvironmentStringsW
GetCurrentThreadId
WriteConsoleW
SetEvent
TerminateThread
LoadLibraryA
GlobalAlloc
LCMapStringA
WriteFile
WaitForMultipleObjects
GlobalUnlock

ole32

CoMarshalHresult
CoQueryProxyBlanket
CoSetProxyBlanket
CoUninitialize
CoCreateInstance
CoInitializeSecurity
CoTaskMemFree
CoInitializeEx
StringFromGUID2

imm32

ImmAssociateContext

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78926b21157f62ce8e56222feb29f98a

Headers

File Characteristics

Imports

kernel32

ole32

imm32

Sections

.text Size: 120KB - Virtual size: 120KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 64KB - Virtual size: 63KB

.reloc Size: 1024B - Virtual size: 104KB

.text
Size: 120KB - Virtual size: 120KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 64KB - Virtual size: 63KB

.reloc
Size: 1024B - Virtual size: 104KB