JaffaCakes118_74cf7a039e3a741e80a389c0d90573ec

General

Target

JaffaCakes118_74cf7a039e3a741e80a389c0d90573ec
Size

170KB
MD5

74cf7a039e3a741e80a389c0d90573ec
SHA1

526de209ec1ae519702e4635ad4358fb7486abd8
SHA256

b16a28d34d9c9a80d9b7a85559204a414e40c782fd207f9d11e802c27d8404bd
SHA512

3bff23f4f7eea05b2f3faacbb79d2ba158cd25504677efceddb777aa63dfa090b361d114b3e26010c2b08cc631dba4db0bb06d4cd7f09a16f1b0feecc470f48e
SSDEEP

3072:Z6U6L2EKLpEtuw0DRx/z0vyIJyXjijoHoHe4wgUocbd29JwgQ1oqEYuXt5uNZ8xn:Z6zL2EK4GTHIJyTikiXUXR29JLQ1REzM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_74cf7a039e3a741e80a389c0d90573ec

Files

JaffaCakes118_74cf7a039e3a741e80a389c0d90573ec
.exe windows:4 windows x86 arch:x86

17ed392a9e4a0120ceb67396c8334e62

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

advapi32

RegEnumKeyA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegOpenKeyA
RegDeleteKeyA
RegQueryValueA
RegCloseKey

kernel32

CreateDirectoryW
LoadLibraryExW
WaitForSingleObject
CreateProcessW
GlobalAddAtomA
GetSystemDirectoryW
LocalAlloc
SetFileAttributesW
FileTimeToLocalFileTime
ResetEvent
GetFileAttributesW
GetModuleHandleW
GetCommandLineA
GetExitCodeProcess
LocalFree
DeleteFileW
CreateFileMappingA
EnumResourceNamesA
GetEnvironmentVariableW
CreateFileW
CopyFileW
CloseHandle
GetSystemTime
MoveFileExW
FileTimeToSystemTime
ReadFileScatter
GetVersionExW
MapViewOfFile
CreateWaitableTimerA
GetTempPathW
SetEvent
CreateThread
WriteConsoleW
GetCurrentThreadId
UnmapViewOfFile
CreateEventA
CreateFileA

lz32

LZClose
LZCopy
LZOpenFileA

Sections

.text
Size: 92KB - Virtual size: 488KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17ed392a9e4a0120ceb67396c8334e62

Headers

File Characteristics

Imports

setupapi

advapi32

kernel32

lz32

Sections

.text Size: 92KB - Virtual size: 488KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 74KB - Virtual size: 74KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 92KB - Virtual size: 488KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 74KB - Virtual size: 74KB

.rsrc
Size: 512B - Virtual size: 4KB