JaffaCakes118_1ad3f5a7f0d8c70323c264aaca3fae3e

General

Target

JaffaCakes118_1ad3f5a7f0d8c70323c264aaca3fae3e
Size

196KB
MD5

1ad3f5a7f0d8c70323c264aaca3fae3e
SHA1

8bdd6e9f3c9e51071c7555830f701654efa2188d
SHA256

c43f349c7fb54e71a0ca17f7cdfa1c5b34573b2a26f34ff7c5c76f56e34811a1
SHA512

8edfa8fbf6a6c5c9bd4c949a271d257123833747aea07a872742ee3ef117630c36095bdb1d2ab5ecd387a6a304302ce35c641b1058e0a491e48935d683ae8403
SSDEEP

3072:XvtwcCBIoBMgQnxoH5S2XTF/QbYKIAtfbsEbzR/3CXPt5g++u+nbU1NzrLUrwtR5:XFqLpgaZ5xWUAtf48x3a7nHiWLUm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_1ad3f5a7f0d8c70323c264aaca3fae3e

Files

JaffaCakes118_1ad3f5a7f0d8c70323c264aaca3fae3e
.exe windows:4 windows x86 arch:x86

0e0c6f88f251f179b8bd056cd2cbebc3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmAssociateContext

ole32

CoMarshalHresult
CoCreateInstance
CoQueryProxyBlanket
CoUninitialize
CoInitializeSecurity
CoSetProxyBlanket
CoTaskMemFree
CoInitializeEx
StringFromGUID2

kernel32

WaitForMultipleObjects
WriteFile
GetLocaleInfoA
SetProcessAffinityMask
GetACP
GetStringTypeA
InterlockedIncrement
CreateFileA
FreeEnvironmentStringsA
SetEvent
GlobalLock
SetStdHandle
GetEnvironmentStringsW
GetStringTypeW
GlobalAlloc
LoadLibraryA
GetOEMCP
CreateFileW
WriteConsoleW
GetSystemTimeAsFileTime
EnumResourceTypesA
QueryPerformanceCounter
IsValidCodePage
WaitForSingleObject
Sleep
GetModuleFileNameW
LCMapStringA
LCMapStringW
GetLocalTime
CreateEventW
DeleteCriticalSection
GetCurrentThreadId
MoveFileW
GetEnvironmentStrings
GetCPInfo
SetNamedPipeHandleState
FlushFileBuffers
GetConsoleOutputCP
GetCurrentProcessId
OutputDebugStringW
InterlockedDecrement
CreateProcessW
SetEndOfFile
ReadFile
FreeEnvironmentStringsW
WriteConsoleA
TerminateThread
GlobalUnlock

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e0c6f88f251f179b8bd056cd2cbebc3

Headers

File Characteristics

Imports

imm32

ole32

kernel32

Sections

.text Size: 125KB - Virtual size: 125KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 66KB - Virtual size: 66KB

.reloc Size: 1024B - Virtual size: 248KB

.text
Size: 125KB - Virtual size: 125KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 66KB - Virtual size: 66KB

.reloc
Size: 1024B - Virtual size: 248KB