2e1dfae278ab29d7d9ffc2ec78b1e160_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e1dfae278ab29d7d9ffc2ec78b1e160_JaffaCakes118
Size

736KB
MD5

2e1dfae278ab29d7d9ffc2ec78b1e160
SHA1

8ae681115b9bb4b1fbd3c90db8cf93dfbe62f3a0
SHA256

11bdf7f49ac66e4bb6e1ea8b59e44400221d1fbd131c9c51b6378943459a4c70
SHA512

24d7dc2f5ca183336ee5c9c32d27a9ea4ea2edff4f628d957eed5cc4082ef52938ebe5ab54967d148568f845be7a18a043dad69bce64f34e6c400d5dd1d6577d
SSDEEP

12288:AdfYkSzc0eVtXiN18QgVPZQOUQvw2d17a2edrdXSPyJhsnLr5Q+59931nOz/6tWZ:AVY1eV5i/8QgVRnK2d82edBXfhqr5/5s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e1dfae278ab29d7d9ffc2ec78b1e160_JaffaCakes118

Files

2e1dfae278ab29d7d9ffc2ec78b1e160_JaffaCakes118
.exe windows:4 windows x86 arch:x86

25a3338cddb183cd127d7780f8af87e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\txxtp\o

Imports

user32

GetFocus
CreatePopupMenu
IsWindowEnabled
ScrollWindowEx
EnableMenuItem
OffsetRect
EndPaint
OpenClipboard
CallWindowProcW
GetCapture
GetMessagePos
GetWindowRect
GetTopWindow
GetMenu
LockWindowUpdate
DrawFocusRect
RegisterClipboardFormatW
GetIconInfo
GetClientRect
DestroyIcon
TrackPopupMenu
InvalidateRgn
SetMenu
LoadCursorW
BeginPaint
GetNextDlgGroupItem
GetClassInfoW
SetCapture
SetFocus
GetDlgItem
DrawEdge
IsDlgButtonChecked
ValidateRect
ChildWindowFromPoint
SystemParametersInfoW
BeginDeferWindowPos
PtInRect
BringWindowToTop
ReleaseCapture
DestroyCursor
DestroyAcceleratorTable
GetDlgItemInt
GetWindowPlacement
SetWindowTextW
ChildWindowFromPointEx
MessageBoxW
GetSysColor
GetDlgCtrlID
SetRectEmpty
MapDialogRect
DrawTextW
AppendMenuW
KillTimer
ShowWindow
GetMenuItemID
DrawIcon
LoadBitmapW
CopyIcon
MoveWindow
GetWindow
GetScrollPos
EnableWindow
IsRectEmpty
GetSysColorBrush
SetMenuDefaultItem
SendDlgItemMessageA
FrameRect
GetParent
DefWindowProcW
RedrawWindow
GetScrollInfo
SetTimer
GetKeyState
CreateWindowExW
RegisterClassExW
UnhookWindowsHookEx
DestroyWindow
LoadIconW
SetActiveWindow
EndDeferWindowPos
UnpackDDElParam
LoadAcceleratorsW
RegisterClassW
PeekMessageW

kernel32

TlsGetValue
GetDateFormatA
GetProcAddress
TlsFree
LeaveCriticalSection
LCMapStringW
GetTimeFormatA
CompareStringW
GetTimeZoneInformation
WideCharToMultiByte
InterlockedExchange
DeleteCriticalSection
GetVersionExA
LoadLibraryW
HeapSize
GetModuleFileNameW
EnterCriticalSection
CompareStringA
GetTickCount
VirtualFree
GetModuleFileNameA
GetFileType
GetCPInfo
GetACP
GetStartupInfoW
GetModuleHandleA
SetStdHandle
IsBadCodePtr
HeapFree
GetCommandLineW
HeapReAlloc
LCMapStringA
FreeEnvironmentStringsA
TlsSetValue
FlushFileBuffers
InitializeCriticalSection
GetModuleHandleW
GetSystemInfo
GetStartupInfoA
GetCurrentProcess
SetUnhandledExceptionFilter
SetLastError
UnmapViewOfFile
SetHandleCount
TlsAlloc
GetLocaleInfoA
ExitProcess
GetCurrentThreadId
ReadFile
SetFilePointer
SetEnvironmentVariableA
VirtualProtect
LoadLibraryA
GetOEMCP
HeapCreate
QueryPerformanceCounter
WriteFile
HeapDestroy
GetStringTypeW
GetStdHandle
GetLastError
GetStringTypeA
GetSystemTimeAsFileTime
GetEnvironmentStrings
FreeEnvironmentStringsW
RtlUnwind
GetCommandLineA
TerminateProcess
VirtualQuery
CloseHandle
HeapAlloc
MultiByteToWideChar
CreateMutexW
RaiseException
VirtualAlloc
GetEnvironmentStringsW
UnhandledExceptionFilter
GetCurrentProcessId

comctl32

ImageList_Destroy
InitCommonControlsEx
ImageList_Remove
ImageList_AddMasked

shell32

SHGetSpecialFolderPathW
DragQueryFileW
ord155
ShellExecuteW

gdi32

Polyline
CreateSolidBrush
SetTextColor
CreateFontIndirectW
RestoreDC
DeleteDC
SetAbortProc
EndPath
CreateRectRgn
GetBkMode
SaveDC
GetTextMetricsA
GetObjectW
StretchDIBits
StrokePath
CreateCompatibleBitmap
BitBlt
RoundRect
PolyBezier
StretchBlt
PtInRegion
SetPolyFillMode
ExtTextOutW
SetPixel
GetRegionData
RectInRegion
Ellipse
GetDIBits
SelectPalette
EndDoc
Arc
GetTextExtentPoint32W
EndPage
SetBkColor
CreatePatternBrush
GetDeviceCaps
SetMapMode
GetPaletteEntries
CreatePen
EqualRgn
GetTextFaceW
OffsetRgn
GetStockObject
StartPage
PatBlt
TextOutW
BeginPath
CreateCompatibleDC
MoveToEx
ExtCreatePen
SetTextAlign
SetROP2
CombineRgn
SelectClipRgn
GetPixel
EnumFontFamiliesExW
DeleteObject
GetRgnBox
CreateDCW
CreatePolygonRgn
SetBkMode
GetTextMetricsW
GetWindowExtEx
SetWindowOrgEx
SetBrushOrgEx
GetBkColor
GetTextCharsetInfo
SetStretchBltMode
Rectangle
CreatePalette
GdiFlush
LineTo
Polygon
SelectObject
IntersectClipRect
CreateEllipticRgn
CreateBitmap
GetTextColor
RealizePalette
AbortDoc
GetClipBox
CreateDIBSection

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 476KB - Virtual size: 475KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25a3338cddb183cd127d7780f8af87e3

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comctl32

shell32

gdi32

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 476KB - Virtual size: 475KB

.data Size: 112KB - Virtual size: 108KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 476KB - Virtual size: 475KB

.data
Size: 112KB - Virtual size: 108KB

.rsrc
Size: 56KB - Virtual size: 54KB