2604a547d32dd17624ab132d57c0ea09_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2604a547d32dd17624ab132d57c0ea09_JaffaCakes118
Size

211KB
MD5

2604a547d32dd17624ab132d57c0ea09
SHA1

34ac7529201d8776989a3ad28e642b90b88bd437
SHA256

6643401533f34de924ada43ac0011f3eea60b8cef233790aa618d06d35d9337b
SHA512

a5e60fe8ff5f8c76973357a88edaf0d8ef173927a48949496ea52f31a4d5a0a22d03692613a6660df7db1ef80db97f02cf8242fcff0177b547971b7a94c213de
SSDEEP

3072:ZtUHKCjjEQghN+YacC+DL7s2gwLXmyMoQlhrS/iMGzjFuVYc:ZtUHKh1X+YdP1gcPSAQG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2604a547d32dd17624ab132d57c0ea09_JaffaCakes118

Files

2604a547d32dd17624ab132d57c0ea09_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a82574e1f4e64be279fbb63a7620f08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

Ellipse
EndPath
ExtCreatePen
ExtSelectClipRgn
ExtTextOutA
GetNearestColor
GetROP2
GetRegionData
GetRgnBox
GetTextColor
GetTextExtentExPointW
GetTextExtentPointA
PlayMetaFileRecord
Polygon
Rectangle
SetRectRgn
UnrealizeObject

shell32

DragAcceptFiles
DragQueryFile
ExtractIconExA
SHBrowseForFolderA
SHChangeNotify
SHCreateDirectoryExA
SHCreateDirectoryExW
SHFileOperationW
SHGetDiskFreeSpaceExW
SHGetFolderLocation
SHGetFolderPathA
SHGetPathFromIDListA
SHGetSpecialFolderPathW
Shell_NotifyIconW

comctl32

ImageList_GetIconSize
ImageList_SetDragCursorImage
PropertySheetW

user32

CallNextHookEx
CharNextA
EqualRect
FillRect
GetDC
GetForegroundWindow
GetSysColor
GetWindowPlacement
IsDialogMessageA
RegisterWindowMessageA
SetWindowsHookExA

kernel32

CreateMutexA
FreeResource
GetConsoleMode
GetConsoleOutputCP
GetEnvironmentStringsW
GetFileSize
GetFileType
GetLocaleInfoW
GetProcAddress
GetTempPathA
GetThreadLocale
GetTimeZoneInformation
GetWindowsDirectoryA
GlobalAddAtomA
IsValidCodePage
LoadLibraryA
LoadLibraryExA
LocalAlloc
ReadFile
ResumeThread
SetFileTime
SetHandleCount
SetThreadLocale
SetUnhandledExceptionFilter
SystemTimeToFileTime
WideCharToMultiByte
lstrcatA
lstrcmpiW

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DyRCBN1L
Size: 1KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a82574e1f4e64be279fbb63a7620f08

Headers

File Characteristics

Imports

gdi32

shell32

comctl32

user32

kernel32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 99KB - Virtual size: 99KB

.rsrc Size: 18KB - Virtual size: 17KB

DyRCBN1L Size: 1KB - Virtual size: 120KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 99KB - Virtual size: 99KB

.rsrc
Size: 18KB - Virtual size: 17KB

DyRCBN1L
Size: 1KB - Virtual size: 120KB