JaffaCakes118_a16d3bb73186668114a7a584a5011e5e

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_a16d3bb73186668114a7a584a5011e5e
Size

188KB
MD5

a16d3bb73186668114a7a584a5011e5e
SHA1

e8cac6a8980d6bd584fd268061b7dbef538fda27
SHA256

61dccc15243520df50e74cf04bbf41865e5749900ab08c38f50c7206c607a192
SHA512

793ddf47fa10e78124af9086e16aea5bc5b1877079c00835494c40b8b175f0430061a07236db14fd27940d0a1b086ecf2f27515956de84422000d239b801379c
SSDEEP

3072:Ebb/YR23Qk3vbstBdsoPTJVQrVmLcYZc4ozviOSLP4Kkt8PkGLwv:qb4kfYfYrVmgYZMO4KkCLU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_a16d3bb73186668114a7a584a5011e5e

Files

JaffaCakes118_a16d3bb73186668114a7a584a5011e5e
.exe windows:4 windows x86 arch:x86

cf998c4aab59adc21347c04fa85b48ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

ReleaseDC
GetDlgItem
IsWindow
GetSysColor
FillRect
ReleaseCapture
GetDC
SetWindowPos
GetWindowInfo
LoadCursorA
SetCursor
GetWindowLongA
MoveWindow
SetWindowLongA
SetCapture

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

SetTapeParameters
GetLocalTime
ClearCommError
GetWindowsDirectoryA
Sleep
GetVersion
InterlockedExchange
EnumResourceNamesA
GetCurrentProcessId
ExitProcess
FindClose
FindFirstFileA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

gdi32

CreateCompatibleDC
EnumFontFamiliesExA
Rectangle
TextOutA
CreateSolidBrush
GetObjectA
GetTextExtentPoint32A
SetBkMode
BitBlt
DeleteMetaFile
GetDeviceCaps
GetStockObject
RestoreDC
CreateRectRgn
CreateFontIndirectA
SelectObject
SaveDC
DeleteDC
SetTextColor
DeleteObject
CreateCompatibleBitmap

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

advapi32

RegOpenKeyA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA
RegSetValueExA

ole32

ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 165KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf998c4aab59adc21347c04fa85b48ba

Headers

File Characteristics

Imports

user32

oleacc

kernel32

shell32

gdi32

version

advapi32

ole32

winmm

Sections

.text Size: 165KB - Virtual size: 164KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 19KB - Virtual size: 18KB

.lib Size: 512B - Virtual size: 220KB

.text
Size: 165KB - Virtual size: 164KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 19KB - Virtual size: 18KB

.lib
Size: 512B - Virtual size: 220KB