JaffaCakes118_08f14d62e343efc5ee57c00203aa8c10

General

Target

JaffaCakes118_08f14d62e343efc5ee57c00203aa8c10
Size

286KB
MD5

08f14d62e343efc5ee57c00203aa8c10
SHA1

909572001e7bee64a3219950b27b5905d4cb0b3b
SHA256

381ca95401cc561b2827a80725a20c363f12acefa2533cd790f1f61792a37d2b
SHA512

0b397cc058fef780b5bb2061d56dbc76e6bb986455e04ba5c9578cbf1b0aa78fbbb8021f7ffd9705b560eecd47cae3b9636e79fa613cc832b9672a4f787085d2
SSDEEP

6144:Kobjcdwsbtl5wgwcxMk0/H3a6CvTd5sdiyK4AvKGwltDAOFio:KobjciCgUY/H3a/hCiyK7ot/f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_08f14d62e343efc5ee57c00203aa8c10

Files

JaffaCakes118_08f14d62e343efc5ee57c00203aa8c10
.exe windows:4 windows x86 arch:x86

a5d11b207494fcdf48f82cfede8e3641

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

rpcrt4

RpcStringFreeA

shlwapi

StrRetToStrA
SHCreateStreamOnFileEx
PathAppendA
PathIsContentTypeA
PathIsFileSpecA
PathCreateFromUrlW

kernel32

GlobalHandle
lstrlenW
GlobalUnlock
TlsAlloc
SetUnhandledExceptionFilter
GetCurrentProcess
FindAtomA
GetLocaleInfoW
FormatMessageW
TlsSetValue
TlsFree
HeapSetInformation
LocalAlloc
InterlockedExchange
FlushInstructionCache
lstrlenA
SetLastError
MultiByteToWideChar
SetLastError
GlobalFree
RaiseException
lstrcmpW
CloseHandle
MulDiv
EnumResourceNamesA
GetTickCount
InterlockedDecrement
DeleteCriticalSection
GetComputerNameW
GetOEMCP
GetStringTypeA
GlobalLock
GlobalAlloc
WaitForSingleObject
GetCurrentThreadId
CreateFileW
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
InterlockedIncrement
LeaveCriticalSection
WideCharToMultiByte

Sections

.text
Size: 145KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5d11b207494fcdf48f82cfede8e3641

Headers

File Characteristics

Imports

shell32

rpcrt4

shlwapi

kernel32

Sections

.text Size: 145KB - Virtual size: 276KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 138KB - Virtual size: 137KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 145KB - Virtual size: 276KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 138KB - Virtual size: 137KB

.rsrc
Size: 512B - Virtual size: 4KB