JaffaCakes118_54b31fface3ed782524316668c700c6a

General

Target

JaffaCakes118_54b31fface3ed782524316668c700c6a
Size

184KB
MD5

54b31fface3ed782524316668c700c6a
SHA1

c3a3738fd10678dea63fbc0392025178d480919e
SHA256

e4319f8866c0f9cc5cdc890fb46d7cb525379d95df9602b4d100887dcd6f4da0
SHA512

ddca2772ad889187fdbf792a6618bbb97f735f0a342ac18e7502367ace8caef1dc7d653224754e810f7797f5deb9d2fe8441f267a1909f28a55ce8f80deb72f8
SSDEEP

3072:T4x7IBs+h8JYDoXtxfdJht6kgoQiVqQvOW84DwIvuj9xhL2:T0EZuTdftdLVq72Ro92

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_54b31fface3ed782524316668c700c6a

Files

JaffaCakes118_54b31fface3ed782524316668c700c6a
.exe windows:4 windows x86 arch:x86

db2280b2e89a674e28436e2c55280c11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetTreatAsClass
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoTaskMemRealloc

kernel32

GetOEMCP
GetCPInfoExW
UnhandledExceptionFilter
InterlockedExchange
WideCharToMultiByte
EnterCriticalSection
RaiseException
GetVersionExA
GetLastError
SetHandleCount
FreeEnvironmentStringsA
GetStdHandle
GetACP
GetThreadLocale
DeleteCriticalSection
GetCPInfo
WriteFile
GetFileType
EnumResourceTypesA
MultiByteToWideChar
QueryPerformanceCounter
TlsGetValue
GetLocaleInfoA
TlsSetValue
lstrlenW
HeapSize
GetLogicalDriveStringsA
LeaveCriticalSection
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeCriticalSection
GetStartupInfoA
GetEnvironmentStrings
InterlockedIncrement
GetCurrentProcessId

newdev

UpdateDriverForPlugAndPlayDevicesW

gdi32

GetTextMetricsA
SelectObject
GetDeviceCaps
GetTextExtentPointA
DeleteObject
CreateFontIndirectA

Sections

.text
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db2280b2e89a674e28436e2c55280c11

Headers

File Characteristics

Imports

ole32

kernel32

newdev

gdi32

Sections

.text Size: 110KB - Virtual size: 110KB

.tls Size: 1KB - Virtual size: 1KB

.data Size: 70KB - Virtual size: 69KB

.reloc Size: 1024B - Virtual size: 124KB

.text
Size: 110KB - Virtual size: 110KB

.tls
Size: 1KB - Virtual size: 1KB

.data
Size: 70KB - Virtual size: 69KB

.reloc
Size: 1024B - Virtual size: 124KB