JaffaCakes118_2402ec5812b511b68baaf36fdc22a767

General

Target

JaffaCakes118_2402ec5812b511b68baaf36fdc22a767
Size

193KB
MD5

2402ec5812b511b68baaf36fdc22a767
SHA1

67c79bf7cdf04dffa901cc7ac0f609e07323c185
SHA256

e29fb6dc22afc946bd56be80efea52625cbd2c498363e6f84d7fa2994d18b2a6
SHA512

7efa3f6d0150d594a9d6d4a156e7521d8656d193b1da208afdd5664b9cdf11f1d4b609260c4959008e3b6b5f6c74e1f3df24384915f4a0c76571afe8873cc04f
SSDEEP

6144:PUm6IeNjMgdL6Q5SL6+JFst4LH3lX82x6cyH5f3wR:cRNj96Q56Fst4L1TxZi5PwR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_2402ec5812b511b68baaf36fdc22a767

Files

JaffaCakes118_2402ec5812b511b68baaf36fdc22a767
.exe windows:4 windows x86 arch:x86

f009cfc318b68fa649ee440a55a2c60f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetWindowsHookExW
IsClipboardFormatAvailable
WinHelpW
ClipCursor
UnhookWindowsHookEx
RegisterClassW
EmptyClipboard
ToAscii
GetSysColorBrush
DestroyCursor
DestroyIcon
SetScrollRange
SetClipboardData
DefWindowProcW
RealGetWindowClass
CallNextHookEx
ChildWindowFromPoint
SetWindowPos
DrawEdge
GetSysColor

comctl32

ImageList_DrawEx
ImageList_Create
ImageList_Add
ImageList_GetIconSize
ImageList_Destroy

rpcrt4

RpcBindingFromStringBindingA
RpcBindingSetAuthInfoA
RpcStringBindingComposeA
NdrClientCall
RpcStringFreeA

kernel32

FileTimeToLocalFileTime
LocalAlloc
CreateFiber
UnlockFile
GetFileAttributesA
FlushFileBuffers
GetSystemTime
IsDBCSLeadByte
TerminateProcess
FileTimeToSystemTime
GetVersionExW
LockFile
EnumResourceNamesA
GetFileTime
GetUserDefaultLangID
FlushFileBuffers
CompareStringW
VerLanguageNameW
SetEndOfFile
SearchPathW
GetProfileStringW
GetVolumeInformationW
GetFileType
FindResourceExA
GetSystemDirectoryW

comdlg32

GetFileTitleA

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f009cfc318b68fa649ee440a55a2c60f

Headers

File Characteristics

Imports

user32

comctl32

rpcrt4

kernel32

comdlg32

Sections

.text Size: 175KB - Virtual size: 174KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 15KB - Virtual size: 14KB

.tls Size: 512B - Virtual size: 220KB

.text
Size: 175KB - Virtual size: 174KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 15KB - Virtual size: 14KB

.tls
Size: 512B - Virtual size: 220KB