JaffaCakes118_9d3e2918e50ae03cbcd58ae01144d1c6

General

Target

JaffaCakes118_9d3e2918e50ae03cbcd58ae01144d1c6
Size

170KB
MD5

9d3e2918e50ae03cbcd58ae01144d1c6
SHA1

17492b3a942ae44404e725fda2249df2ca825d8b
SHA256

a0209af2fe689faccd3c7bf436f7c0d32d43b589191380146db08d5ee4f00731
SHA512

32ba7e4d1c80800bc400f8ff1a47e9864448f72ef4384eb6d4c1b2586a319444ff8e123a9fe6c01297e7dbc90e083823c4c4c1a74c7a9c37346c20919e4886a4
SSDEEP

3072:QtU5tmrZIln3haDCvsCltxd5kIR+ymkPx42USPCKk/izQ:Pq1DCvsCltrhCoxLBCj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9d3e2918e50ae03cbcd58ae01144d1c6

Files

JaffaCakes118_9d3e2918e50ae03cbcd58ae01144d1c6
.exe windows:4 windows x86 arch:x86

222eea8d8236373962629943b24c6b75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVISaveOptions
AVIMakeCompressedStream

kernel32

MultiByteToWideChar
SetFileAttributesA
GetTempFileNameA
GetCurrentThreadId
EnterCriticalSection
LocalAlloc
GetShortPathNameA
WaitForSingleObject
SetFileAttributesW
LeaveCriticalSection
GetProcessAffinityMask
SetFilePointer
GetCurrentProcessId
WideCharToMultiByte
GetTempPathA
DeleteFileA
CreateMutexA
OutputDebugStringA
LocalFree
GetSystemTime
DisableThreadLibraryCalls
GetTickCount
GetVersionExA
EnumResourceTypesW
ReadFile
QueryPerformanceCounter
InterlockedDecrement
GetTempPathW
OutputDebugStringW
GetTempFileNameW
GetFileAttributesA
LoadLibraryW
lstrlenA
CreateFileA
FreeLibrary
ReleaseMutex
CopyFileA
WriteFile
TerminateProcess
GetLastError
CreateDirectoryA
InterlockedIncrement
GetModuleFileNameA
CloseHandle
GetProcAddress
GetSystemTimeAsFileTime

winmm

timeGetTime

user32

DispatchMessageW
ReleaseDC
GetDC
PeekMessageW
wsprintfW
TranslateMessage
SetRectEmpty
CopyRect
OffsetRect
FillRect
GetClientRect
IsRectEmpty
GetWindowRect

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

222eea8d8236373962629943b24c6b75

Headers

File Characteristics

Imports

avifil32

kernel32

winmm

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 1KB

.bss Size: 70KB - Virtual size: 69KB

.tls Size: 1024B - Virtual size: 256KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 1KB

.bss
Size: 70KB - Virtual size: 69KB

.tls
Size: 1024B - Virtual size: 256KB