JaffaCakes118_acdc9145621ac48a4f3d4f94080c035a

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_acdc9145621ac48a4f3d4f94080c035a
Size

259KB
MD5

acdc9145621ac48a4f3d4f94080c035a
SHA1

2cd29e5ed892a78840c738ebaee057ac58a9efa3
SHA256

1b6fff79ae48885653df426b23c56d261a62a0e06a982f213b4eb565cad333f6
SHA512

b305ce1fa33aed04f6aa5ed5aa0a8533891191415f6562ebb075583968f11b7beba87137e0bd539c5b0116b4b4d23368c4aa62bbbe9e586264c3699a4b26d4bd
SSDEEP

6144:Pqkpl9HX8DqrItDpSuXgUJhS19Guxox5F7OyEPk/aEMBeqrNVwPm7ygSTD:PlD38Dqr6ZvJh2Gu8myckJ0eqhWrfTD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_acdc9145621ac48a4f3d4f94080c035a

Files

JaffaCakes118_acdc9145621ac48a4f3d4f94080c035a
.exe windows:4 windows x86 arch:x86

2f4dc09f28db652b48c84cfd30109d2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
lstrcpynA
lstrlenA
GetLastError
GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
Sleep
LocalFree
GetTickCount
GetModuleFileNameW
GetVersionExW
LocalAlloc
LoadLibraryW
GetProcessHeap
GetProcAddress

user32

EnableWindow
SetForegroundWindow
SendMessageW

advapi32

RegCreateKeyExW
RegEnumKeyW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteKeyA

shell32

SHGetDesktopFolder

msasn1

ASN1intx_free
ASN1BEREncFlush
ASN1BERDecZeroChar16String
ASN1intx2uint32
ASN1BERDecNotEndOfContents
ASN1_CloseModule
ASN1BERDotVal2Eoid
ASN1BERDecS8Val
ASN1BERDecExplicitTag
ASN1CEREncEndBlk
ASN1intxisuint32
ASN1BERDecOctetString

psbase

SPEnumTypes

Sections

.icode
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.W
Size: 2KB - Virtual size: 447KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lJQ
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Yt
Size: 3KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xYWcO
Size: 1024B - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 91KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.g
Size: 1KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 123KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ouD
Size: 1KB - Virtual size: 378KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f4dc09f28db652b48c84cfd30109d2c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

msasn1

psbase

Sections

.icode Size: 4KB - Virtual size: 3KB

.W Size: 2KB - Virtual size: 447KB

.lJQ Size: 4KB - Virtual size: 1.0MB

.text Size: 13KB - Virtual size: 13KB

.Yt Size: 3KB - Virtual size: 117KB

.rdata Size: 2KB - Virtual size: 39KB

.xYWcO Size: 1024B - Virtual size: 106KB

.edata Size: 91KB - Virtual size: 167KB

.g Size: 1KB - Virtual size: 318KB

.data Size: 6KB - Virtual size: 216KB

.edata Size: 123KB - Virtual size: 147KB

.ouD Size: 1KB - Virtual size: 378KB

.rsrc Size: 3KB - Virtual size: 3KB

.icode
Size: 4KB - Virtual size: 3KB

.W
Size: 2KB - Virtual size: 447KB

.lJQ
Size: 4KB - Virtual size: 1.0MB

.text
Size: 13KB - Virtual size: 13KB

.Yt
Size: 3KB - Virtual size: 117KB

.rdata
Size: 2KB - Virtual size: 39KB

.xYWcO
Size: 1024B - Virtual size: 106KB

.edata
Size: 91KB - Virtual size: 167KB

.g
Size: 1KB - Virtual size: 318KB

.data
Size: 6KB - Virtual size: 216KB

.edata
Size: 123KB - Virtual size: 147KB

.ouD
Size: 1KB - Virtual size: 378KB

.rsrc
Size: 3KB - Virtual size: 3KB