2221f51da6aea034d6d2fa50109486b8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2221f51da6aea034d6d2fa50109486b8_JaffaCakes118
Size

2.0MB
MD5

2221f51da6aea034d6d2fa50109486b8
SHA1

256a51fded2b1723a066a6aa416aa0380ad80f1a
SHA256

d86f6e52ed9e92140192983ebc9ef63bc26adf6df8641592af2a68f34c8c54aa
SHA512

99704eaffda594228f34232ba14d22f8dba59ff9a6b06b5608622d449185f5c44b44c907ed44d20d0e6a02a60761f1728b55d2238833a4ec143675a8dff06fbd
SSDEEP

49152:aB+RTIMU+2SGqKIcOOd8pHo6pp2OOpEkbi9gCnRu0Oe:XRcMU+ArKK3Yp20JgCnR7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2221f51da6aea034d6d2fa50109486b8_JaffaCakes118

Files

2221f51da6aea034d6d2fa50109486b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1fc2471ffc6311c7a154c8139b5b6696

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

MoveFileExA
LocalReAlloc
GlobalAlloc
GetFileAttributesA
ExitProcess
DeleteCriticalSection
SetHandleCount
GetOEMCP
LocalAlloc
HeapFree
GetFullPathNameA
GlobalAddAtomA
LockResource
GetFileType
SetLastError
GetStringTypeA
lstrcpynA
GetModuleFileNameA
HeapDestroy
WriteFile
EnterCriticalSection
IsBadHugeReadPtr
LoadLibraryExA
lstrcmpiA
GetCPInfo
lstrcmpA
ReadFile
CloseHandle
VirtualFree
InitializeCriticalSection
ResetEvent
VirtualQuery
MulDiv
VirtualAlloc
GetLocalTime
WaitForSingleObject
lstrlenA
DeleteFileA
GetLastError
lstrcpyA
FreeResource
lstrcatA

user32

MoveWindow
wsprintfA
DispatchMessageA
CheckMenuItem
ClientToScreen
GetDesktopWindow
GetSubMenu
SetScrollInfo
GetWindowThreadProcessId
GetWindow
LoadKeyboardLayoutA
DrawIcon
RegisterWindowMessageA
CharNextW
IsWindowVisible
LoadStringA
RegisterClassA
IsChild
GetMenu
GetClipboardData
GetParent
SetWindowPlacement
IsWindowEnabled
GetCapture
ShowOwnedPopups
GetKeyboardLayoutNameA
SendMessageA
IsWindow
DefMDIChildProcA
EnableWindow
EnumThreadWindows
DefWindowProcA
LoadIconA
SetCursor
FindWindowA
KillTimer
RemovePropA
CharUpperBuffA
GetDlgItem
CreateMenu
CloseClipboard
GetWindowLongA

gdi32

CreateDIBSection
GetDCOrgEx
GetBkMode
SetBkColor

Exports

Exports

_uUZ@4
_eWu
o

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.0MB - Virtual size: 6.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: 512B - Virtual size: 187B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fc2471ffc6311c7a154c8139b5b6696

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 2.0MB - Virtual size: 6.8MB

BSS Size: 2KB - Virtual size: 1KB

.bbs Size: 512B - Virtual size: 187B

.tls Size: 512B - Virtual size: 124B

.rdata Size: 512B - Virtual size: 24B

.edata Size: 2KB - Virtual size: 2KB

.idata Size: 512B - Virtual size: 100B

.rsrc Size: 15KB - Virtual size: 15KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 2.0MB - Virtual size: 6.8MB

BSS
Size: 2KB - Virtual size: 1KB

.bbs
Size: 512B - Virtual size: 187B

.tls
Size: 512B - Virtual size: 124B

.rdata
Size: 512B - Virtual size: 24B

.edata
Size: 2KB - Virtual size: 2KB

.idata
Size: 512B - Virtual size: 100B

.rsrc
Size: 15KB - Virtual size: 15KB