JaffaCakes118_747cfb60eecc5d1a99169775c0a68fe5

General

Target

JaffaCakes118_747cfb60eecc5d1a99169775c0a68fe5
Size

170KB
MD5

747cfb60eecc5d1a99169775c0a68fe5
SHA1

8dee3a7ec9e415c28ff4130156917743155e4e89
SHA256

d257b65ceb5cafaf948a503b4e83fcb88310d4515a22e3456d3cdefa8f8ec116
SHA512

9358f7ab3cdefc6d7e15c359cdb30bbe383b7c033e771fa8f2fc1cdded1482ffe6d646362e4e09a9e7506579756f3d3a2ec99511427be01e501930772bb26e1e
SSDEEP

3072:y1y3JzflKd9vce7XgpgP7/npFDb7jpfpRAeflfPyo3RpG7k09:W6J7SNwpEDDbBhqMpG7l9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_747cfb60eecc5d1a99169775c0a68fe5

Files

JaffaCakes118_747cfb60eecc5d1a99169775c0a68fe5
.exe windows:4 windows x86 arch:x86

afc2c135e0c5d4542a370fd5e2eb6cb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetAncestor
MessageBoxW

rpcrt4

UuidCreate

kernel32

GetLocaleInfoW
LeaveCriticalSection
SetStdHandle
MultiByteToWideChar
CreateFileA
GetCurrentProcess
InterlockedDecrement
ExitProcess
WriteConsoleW
GetThreadPriority
TerminateProcess
GetCurrentThreadId
WideCharToMultiByte
RaiseException
EnterCriticalSection
EnumSystemLocalesA
GetConsoleOutputCP
IsDebuggerPresent
GlobalAlloc
GetProcAddress
SetupComm
DeleteCriticalSection
LCMapStringA
InterlockedIncrement
SetUnhandledExceptionFilter
HeapReAlloc
GetVersionExA
GetUserDefaultLCID
GetFullPathNameW
EnumResourceNamesA
WriteConsoleA
LCMapStringW
GetCPInfo
RtlUnwind
GetCommandLineA
HeapSize
CloseHandle
ExitProcess
IsValidLocale
GetProcessHeap
GetLastError
HeapAlloc
ReadFile
HeapFree
SetEndOfFile
GetCurrentDirectoryW
IsValidCodePage
WriteFile
GetModuleHandleA
UnhandledExceptionFilter
GetModuleFileNameW
Sleep
InitializeCriticalSection
GetFullPathNameA

shell32

SHFileOperationW
SHCreateDirectoryExW
SHGetFolderPathW

Sections

.text
Size: 147KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afc2c135e0c5d4542a370fd5e2eb6cb2

Headers

File Characteristics

Imports

user32

rpcrt4

kernel32

shell32

Sections

.text Size: 147KB - Virtual size: 146KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 19KB - Virtual size: 19KB

.crt Size: 512B - Virtual size: 72KB

.text
Size: 147KB - Virtual size: 146KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 19KB - Virtual size: 19KB

.crt
Size: 512B - Virtual size: 72KB