JaffaCakes118_e28a5b69ca6f07ee13cc751d99b3942e

General

Target

JaffaCakes118_e28a5b69ca6f07ee13cc751d99b3942e
Size

157KB
MD5

e28a5b69ca6f07ee13cc751d99b3942e
SHA1

f38e21f245b3f5e2f25c77a6fd2624f1c6e844d4
SHA256

9dfc8c50e3f1e13494fe702172803b373d7c9a1433ef0e4c3ed58402124a73e4
SHA512

d806237f2681af6ed6c4dcce1827646c56b2f67dd7337dde0abb4bc1805904dbb52ae4c2251eb89a4906fd7a5beee8090f33550340902fcff733b76b78c9407e
SSDEEP

3072:wSNApYXHYzNrVwv8W8X8bolXfxAjiyg6PlSi4jHa1Ev:wS6Y3YzNrVw0W8X8b4pAjiyvwVjUEv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_e28a5b69ca6f07ee13cc751d99b3942e

Files

JaffaCakes118_e28a5b69ca6f07ee13cc751d99b3942e
.exe windows:4 windows x86 arch:x86

cf6d1f71d055a1bb788b1108594d9975

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

lstrcpyA
lstrcpyA
CreateFileMappingW
GlobalAlloc
GetProcessId
WideCharToMultiByte
lstrcpyW
lstrlenW
MultiByteToWideChar
LockResource
GetCPInfo
EnumResourceNamesW
FindClose
GetLastError
FreeEnvironmentStringsW
GlobalFree
OutputDebugStringW
GetACP
lstrcmpiW
GetTickCount
InitializeCriticalSection
GetModuleHandleW

ole32

CoRevokeClassObject
CoTaskMemRealloc
CoTaskMemAlloc
CoRegisterClassObject
CoCreateInstance
CoUninitialize
StringFromGUID2
CoInitialize
CoTaskMemFree
StringFromCLSID

advapi32

RegQueryInfoKeyW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteKeyW
RegSetValueExW

user32

GetMessageW
CharUpperW
PostThreadMessageW
DispatchMessageW
wsprintfW
SetTimer
GetDC
SendMessageA
TranslateMessage
CharNextW
KillTimer
UnregisterClassA

shlwapi

PathCombineW
PathFileExistsW

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.isete
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf6d1f71d055a1bb788b1108594d9975

Headers

File Characteristics

Imports

oleacc

kernel32

ole32

advapi32

user32

shlwapi

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 57KB - Virtual size: 57KB

.isete Size: 1024B - Virtual size: 100KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 57KB - Virtual size: 57KB

.isete
Size: 1024B - Virtual size: 100KB