JaffaCakes118_6b77ca4a3f949f1648b0cadcb178da32

General

Target

JaffaCakes118_6b77ca4a3f949f1648b0cadcb178da32
Size

202KB
MD5

6b77ca4a3f949f1648b0cadcb178da32
SHA1

6f7e5021e1e60bd74ffda454b137488c67d4f76f
SHA256

c25bc67039e29c090bb4f7aef8c26d7a32b832b2e008b8a212447d78ee85b905
SHA512

35df2027a3f362a910d19b4371f0b2cc04e2d774d0bcbb82adfcc3a836862ebe09ff6331499a25928a897c8ad24b4f042c8c3fa34d16278b60e6bf9202d7559a
SSDEEP

3072:RiseqVhYsBKUhGRiircqiBF6IXLYlLbByVzqT0K/O4iVsE2XcdUMNrdXQM9e:Usj4sIRJmF6iLYlSzqT0KYVsELUMsEe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_6b77ca4a3f949f1648b0cadcb178da32

Files

JaffaCakes118_6b77ca4a3f949f1648b0cadcb178da32
.exe windows:4 windows x86 arch:x86

177ac351046112187cd624cc7f8f5405

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateFiber
GetACP
TerminateProcess
GetLocaleInfoA
GetSystemInfo
InterlockedCompareExchange
ResumeThread
UnhandledExceptionFilter
HeapAlloc
VirtualQuery
SetUnhandledExceptionFilter
LoadLibraryA
HeapReAlloc
VirtualFree
HeapSize
HeapCreate
EnumResourceNamesA
RtlUnwind
SetThreadPriority
HeapDestroy
GetProcAddress
VirtualProtect
GetCommandLineA
IsProcessorFeaturePresent
ExitProcess
IsDebuggerPresent
VirtualAlloc
WriteFile

user32

OffsetRect
EqualRect
ReleaseDC
SetWindowPos
GetClientRect
CharNextA
SetWindowLongA
CreateWindowExA
LoadCursorA
InvalidateRect
PtInRect
RegisterClassExA
EndPaint
GetFocus
UnionRect
RealGetWindowClassA
SetFocus
GetKeyState
GetDC
BeginPaint
IsChild
ShowWindow
UnregisterClassA
IntersectRect
DefWindowProcA
wsprintfA
IsWindow
SetWindowRgn
GetWindowLongA
CallWindowProcA
GetParent
GetClassInfoExA
DestroyWindow

setupapi

CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 228KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

177ac351046112187cd624cc7f8f5405

Headers

File Characteristics

Imports

kernel32

user32

setupapi

Sections

.text Size: 173KB - Virtual size: 173KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 25KB - Virtual size: 25KB

.tls Size: 512B - Virtual size: 228KB

.text
Size: 173KB - Virtual size: 173KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 25KB - Virtual size: 25KB

.tls
Size: 512B - Virtual size: 228KB