JaffaCakes118_6b02f81c2c1681708d13a8dd362cc809

General

Target

JaffaCakes118_6b02f81c2c1681708d13a8dd362cc809
Size

182KB
MD5

6b02f81c2c1681708d13a8dd362cc809
SHA1

68e1a4cdcddb5b8d1bda38ac5829cc59aa7dc52f
SHA256

e2e7bce386f2757a9dfec329a94869469866c9ad8e198dcee6ce12412ba8e6a7
SHA512

39965f59e5d9bdeb723b7772d0074fbfe11d05b3469667864bc42dc65ddcf77216313ddde1c95dd7bb7ce6f2d12d1a0646092ac8cf972f91c9543382726a9be6
SSDEEP

3072:3gjcHBfqaePyO1vEwgIsoRziN9KEDCARg5bq6K/qqgS2f:3k6VNePyTwvTON9KEG5cqqgSO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6b02f81c2c1681708d13a8dd362cc809

Files

JaffaCakes118_6b02f81c2c1681708d13a8dd362cc809
.exe windows:4 windows x86 arch:x86

dbb3f3a23aaba81f59e84f54487e300a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetThreadPriority
EnterCriticalSection
GetCPInfo
GetCurrentDirectoryW
HeapAlloc
GetCurrentThreadId
GetConsoleOutputCP
InitializeCriticalSection
GetModuleHandleA
Sleep
HeapFree
UnhandledExceptionFilter
HeapReAlloc
LCMapStringW
SetUnhandledExceptionFilter
PurgeComm
GetCommandLineA
WideCharToMultiByte
HeapSize
EnumSystemLocalesA
GetProcessHeap
WriteConsoleW
RaiseException
GetLocaleInfoW
WriteConsoleA
IsDebuggerPresent
SetEndOfFile
EnumResourceNamesA
InterlockedIncrement
ReadFile
GetVersionExA
IsValidCodePage
GetFullPathNameW
ExitProcess
TerminateProcess
WriteFile
DeleteCriticalSection
IsValidLocale
GlobalAlloc
SetStdHandle
GetLastError
CloseHandle
CreateFileA
MultiByteToWideChar
ExitProcess
GetCurrentProcess
RtlUnwind
GetUserDefaultLCID
GetModuleFileNameW
LeaveCriticalSection
LCMapStringA
InterlockedDecrement
GetProcAddress
GetFullPathNameA

rpcrt4

UuidCreate

user32

GetClassLongA
MessageBoxW

shell32

SHFileOperationW
SHCreateDirectoryExW
SHGetFolderPathW

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW

Sections

.text
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbb3f3a23aaba81f59e84f54487e300a

Headers

File Characteristics

Imports

kernel32

rpcrt4

user32

shell32

advapi32

Sections

.text Size: 154KB - Virtual size: 154KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 24KB - Virtual size: 24KB

.crt Size: 512B - Virtual size: 216KB

.text
Size: 154KB - Virtual size: 154KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 24KB - Virtual size: 24KB

.crt
Size: 512B - Virtual size: 216KB