23df0414eb3715a7c9fd30e594a526f9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

23df0414eb3715a7c9fd30e594a526f9_JaffaCakes118
Size

2.0MB
MD5

23df0414eb3715a7c9fd30e594a526f9
SHA1

eba294b009ffd6a3d34bbe343cd73c6cb3693fc7
SHA256

202ec0ba8b85ab9b46c1be392e8a13487c019b68f406f3ba96efac56fd834d87
SHA512

5146a52b701645228d8db07fcbc80539ebea30f2709ca257aa3c9dc008bb4ca4878c54e4bec9dcce2c7c567fc651c46f9905183c21162b0209a763b77b01943b
SSDEEP

49152:rEJA89GV9A9VjmZ7h0w2Tl/UogvQAbzPIfwlV2xP:R89Gj6jhwil/qXIwV2t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23df0414eb3715a7c9fd30e594a526f9_JaffaCakes118

Files

23df0414eb3715a7c9fd30e594a526f9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1c113f2c24279e947ee49369ba59863c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetBkColor
ImageList_GetIconSize
ImageList_DrawIndirect
ImageList_DragShowNolock

version

VerQueryValueA

gdi32

GetDeviceCaps
GetNearestPaletteIndex
StretchBlt
GetRgnBox
SetTextJustification
GetBitmapBits
EndDoc
SetWindowExtEx
PtInRegion
CloseMetaFile

kernel32

GetSystemDirectoryW
GetCommModemStatus
GetTapeParameters
GetCurrentProcessId
SetHandleCount
_lread
FreeResource
SizeofResource
ReadFile
FreeLibrary
VirtualQuery
FillConsoleOutputCharacterA
GetLargestConsoleWindowSize
FindCloseChangeNotification
SetConsoleTitleA
SetThreadAffinityMask
EraseTape
GetNumberFormatW
SetErrorMode
TlsGetValue
SuspendThread
GetEnvironmentStringsW
VirtualLock
EnumSystemCodePagesW
VirtualAllocEx
CreateFileW
OpenMutexA
FreeLibraryAndExitThread
GetOEMCP
GetLogicalDriveStringsA
GetProfileIntA
SetMailslotInfo
SetEnvironmentVariableW
SetTimeZoneInformation
VirtualUnlock
PeekNamedPipe
LocalSize
GetFileAttributesExA
ExitProcess
GetThreadContext
VirtualAlloc

user32

LoadAcceleratorsA
IsWindowEnabled
EnumDisplayDevicesW
CallWindowProcA
DialogBoxIndirectParamW
GetIconInfo
GetKeyNameTextA
CopyAcceleratorTableW
DestroyCursor
GetWindowTextW
EnableScrollBar
CharNextW
CharNextExA
InsertMenuItemA

advapi32

ObjectCloseAuditAlarmW
LookupAccountNameA
StartServiceW
InitiateSystemShutdownW
CopySid
CryptDecrypt

Sections

.text
Size: 2KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c113f2c24279e947ee49369ba59863c

Headers

File Characteristics

Imports

comctl32

version

gdi32

kernel32

user32

advapi32

Sections

.text Size: 2KB - Virtual size: 218KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 1.8MB - Virtual size: 1.8MB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 2KB - Virtual size: 218KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 1.8MB - Virtual size: 1.8MB

.rsrc
Size: 17KB - Virtual size: 16KB