JaffaCakes118_98763b1279941e8d5f90a49595ac7770

General

Target

JaffaCakes118_98763b1279941e8d5f90a49595ac7770
Size

197KB
MD5

98763b1279941e8d5f90a49595ac7770
SHA1

2e22716c3a7f609fd4709a5d4ac6642c64a5830c
SHA256

2b02a3c464a48b7d0502795f384ac3899b59898eec43f9106ff6255bbe2ecf7c
SHA512

106b9f6c64fe6c80b8289a3b8b213a43cd221ee4f6505330e6bf56195c838f04a51c1082a33aba0c8636b73c2c75b3dfbd3c846a9da7f12294501a665072f5c3
SSDEEP

3072:v3euxLISosUtKEyFLU+yKRAWebBdSgDsaImy/f//yHmnQ0/RjZT23l9u2vGG:vS6EyDVefS9vkt0/6nfvj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_98763b1279941e8d5f90a49595ac7770

Files

JaffaCakes118_98763b1279941e8d5f90a49595ac7770
.exe windows:4 windows x86 arch:x86

5eaf8c2677cafca7271c92a4fa374ca3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

RegisterClassExA
LoadCursorA
SetWindowRgn
DefWindowProcA
SetFocus
wsprintfA
GetClassInfoExA
SetWindowPos
GetDC
OffsetRect
IntersectRect
IsWindow
ReleaseDC
UnregisterClassA
UnionRect
InvalidateRect
EqualRect
GetKeyState
CreateWindowExA
BeginPaint
GetClientRect
GetWindowLongA
GetFocus
SetWindowLongA
IsChild
CallWindowProcA
CharNextA
EndPaint
PtInRect
RealGetWindowClassA
ShowWindow
GetParent
DestroyWindow

setupapi

SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

kernel32

LoadLibraryA
HeapCreate
HeapAlloc
CreateFiber
VirtualQuery
InterlockedCompareExchange
ResumeThread
HeapDestroy
HeapReAlloc
ExitProcess
UnhandledExceptionFilter
RtlUnwind
SetUnhandledExceptionFilter
VirtualAlloc
TerminateProcess
EnumResourceNamesA
GetProcAddress
GetCommandLineA
GetSystemInfo
HeapSize
SetThreadPriority
VirtualProtect
VirtualFree
IsDebuggerPresent
GetACP
IsProcessorFeaturePresent
GetLocaleInfoA
WriteFile

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5eaf8c2677cafca7271c92a4fa374ca3

Headers

File Characteristics

Imports

user32

setupapi

kernel32

Sections

.text Size: 172KB - Virtual size: 172KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 21KB - Virtual size: 20KB

.tls Size: 512B - Virtual size: 216KB

.text
Size: 172KB - Virtual size: 172KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 21KB - Virtual size: 20KB

.tls
Size: 512B - Virtual size: 216KB