JaffaCakes118_9842aa1a39f83c18b9056a6fe765b78a

General

Target

JaffaCakes118_9842aa1a39f83c18b9056a6fe765b78a
Size

164KB
MD5

9842aa1a39f83c18b9056a6fe765b78a
SHA1

209a87a36be5b96f72b2288fcd8f09710cfcba49
SHA256

d9da6f83ee3711995710e19f7cf9ef029ed227f9863f61b5078ac25e7339eeed
SHA512

998b80a2ea6d49e18b9143692fddb940cce2af2478e6d386073c1a3676b967807f6f97bd49d8a2dcf531dc4fcde37b354c3c5aff63588208d163746bd37f7147
SSDEEP

3072:tnd9nn6kAe7p6Yg58ZzMU48NSkvbJ8X46J4sm+pkKhB8t2PXQcQWrwmewJi:Nb6kAs6FCzA8NSto6wcHz87yQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_9842aa1a39f83c18b9056a6fe765b78a

Files

JaffaCakes118_9842aa1a39f83c18b9056a6fe765b78a
.exe windows:4 windows x86 arch:x86

729344e9da5d45e07e219e3c2b5744a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetThreadLocale
GetCalendarInfoW
WriteFile
GetCurrentThreadId
LoadLibraryExW
WideCharToMultiByte
lstrlenA
GetSystemTimeAsFileTime
HeapFree
GetACP
lstrlenW
CreateProcessA
UnhandledExceptionFilter
GetLocaleInfoA
Sleep
GetCurrentProcess
CloseHandle
LoadLibraryW
GetModuleHandleA
QueryPerformanceCounter
EnumResourceNamesA
SystemTimeToFileTime
HeapDestroy
GetStartupInfoA
SetUnhandledExceptionFilter
HeapAlloc
FindFirstFileW
GetProcessHeap
GetSystemTime
InterlockedCompareExchange
RaiseException
LocalAlloc
TerminateProcess
InterlockedExchange
GetTickCount
IsDebuggerPresent
GetStdHandle
CreateFileW
HeapReAlloc
HeapSize
GetCurrentProcessId
MultiByteToWideChar
GetEnvironmentVariableA
lstrcpynW

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoGetMalloc
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID

user32

GetDC
SetCursor
GetDlgItem
FillRect
GetWindowInfo
LoadCursorA
SetWindowLongA
SetWindowPos
IsWindow
ReleaseDC
GetSysColor
MoveWindow
GetWindowLongA
ReleaseCapture
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

729344e9da5d45e07e219e3c2b5744a7

Headers

File Characteristics

Imports

version

kernel32

oleacc

ole32

user32

winmm

Sections

.text Size: 91KB - Virtual size: 90KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 69KB - Virtual size: 68KB

.rsrc Size: 1024B - Virtual size: 100KB

.text
Size: 91KB - Virtual size: 90KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 69KB - Virtual size: 68KB

.rsrc
Size: 1024B - Virtual size: 100KB