JaffaCakes118_3554b0cd570e8d29242b9cc31bb66fab

General

Target

JaffaCakes118_3554b0cd570e8d29242b9cc31bb66fab
Size

173KB
MD5

3554b0cd570e8d29242b9cc31bb66fab
SHA1

f137a863bd7309896c243aa9a8a06bc70f5579d6
SHA256

906c5db5b81bb5b112ed6f3ef2d3181bb4869e82e4e3a40b775e5ecaed3264ed
SHA512

62a0e10a8df1ff48292630a04cc03105fa29fdcb6a7321d61cac911b7d2fab6554d2fabdce53f67583270264689d0499fd11b1721ae0eb1ee435508f8efcfa8a
SSDEEP

3072:02EXXq0sLf5/tUj8JxMHXKbMmQppXuNR7D0+HIldhkeFVFuf2jbU7xowAM:0j6prqQj2eN1jHIhkqW2UlD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_3554b0cd570e8d29242b9cc31bb66fab

Files

JaffaCakes118_3554b0cd570e8d29242b9cc31bb66fab
.exe windows:4 windows x86 arch:x86

252d236c61dc8be868c2486a65bdffd1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

kernel32

GlobalAlloc
FlushInstructionCache
FindAtomW
GetCurrentThreadId
SetLastError
CloseHandle
GetLocaleInfoW
WaitForSingleObject
InterlockedIncrement
DeleteCriticalSection
MulDiv
lstrcmpW
TlsAlloc
GlobalHandle
TlsGetValue
InitializeCriticalSection
RaiseException
LocalAlloc
GetCurrentProcess
GlobalUnlock
InterlockedExchange
TlsFree
HeapSetInformation
GetTickCount
MultiByteToWideChar
EnumResourceNamesA
GetStringTypeA
FormatMessageW
EnterCriticalSection
GetOEMCP
GlobalLock
CreateFileW
GetComputerNameW
InterlockedDecrement
GlobalFree
LeaveCriticalSection
lstrlenW
SetLastError
TlsSetValue
lstrlenA
SetUnhandledExceptionFilter
WideCharToMultiByte

shlwapi

StrRetToStrA
PathAppendA
PathIsFileSpecA
SHCreateStreamOnFileEx
PathIsContentTypeA
PathCreateFromUrlW

oleacc

CreateStdAccessibleObject

Sections

.text
Size: 93KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

252d236c61dc8be868c2486a65bdffd1

Headers

File Characteristics

Imports

shell32

kernel32

shlwapi

oleacc

Sections

.text Size: 93KB - Virtual size: 484KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 76KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 93KB - Virtual size: 484KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 76KB

.rsrc
Size: 512B - Virtual size: 4KB