2a95f7e6824969d168cb88912590b298_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a95f7e6824969d168cb88912590b298_JaffaCakes118
Size

440KB
MD5

2a95f7e6824969d168cb88912590b298
SHA1

ef619b9861164aa2f55216e42820f3558a9d04aa
SHA256

2ebc256e8186d654597be2bfd97f597bfa30634e458aea889bc2563c1f230fcb
SHA512

1c88c5512538399f1b8bf16523e92d3af9e0debabc1586bed6ef92c89af88580ca66739f1af8ae7237e7cebd243617369766226855087d93c4de53445b2ae582
SSDEEP

12288:kFburJbdkEC6oh3CUr8L4P59ZrU30zC2SdfTdT:0burJpE3CUg4b7C2ST

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a95f7e6824969d168cb88912590b298_JaffaCakes118

Files

2a95f7e6824969d168cb88912590b298_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2b7134fc92139c251e52531ce8231948

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\ojvprvc

Imports

gdi32

DeleteColorSpace
GdiPlayJournal
CreateColorSpaceA
GetTextCharsetInfo
CreateFontIndirectW
CancelDC
GetDIBits
CreateDIBPatternBrushPt
GetBkMode
SetDeviceGammaRamp
GetEnhMetaFileDescriptionW
GetCharWidthA
Polyline
CreateDiscardableBitmap
EndDoc
FillRgn
PolyDraw

kernel32

UnhandledExceptionFilter
OpenMutexA
LocalSize
FreeEnvironmentStringsW
TlsAlloc
EnumDateFormatsW
lstrcmpiA
GetCurrentProcessId
GetEnvironmentStrings
GetProcessHeap
LCMapStringA
RtlUnwind
TlsSetValue
GetTimeZoneInformation
InterlockedDecrement
TlsFree
TerminateProcess
HeapFree
WriteProfileSectionW
GetCurrentThread
SetConsoleCtrlHandler
GetStartupInfoW
SetLastError
GetSystemDefaultLCID
SetHandleCount
ExitProcess
GlobalReAlloc
LocalLock
GetSystemTime
GetFileType
GetCommandLineA
InterlockedExchange
GetStringTypeW
OutputDebugStringA
VirtualQuery
GetCurrentThreadId
GetCurrentProcess
SetFilePointer
FreeEnvironmentStringsA
WriteFile
GetLogicalDriveStringsW
GetStringTypeA
TlsGetValue
DeleteCriticalSection
GetSystemDirectoryA
HeapCreate
GetModuleFileNameW
InitializeCriticalSection
GetCPInfo
GetLastError
GetEnvironmentStringsW
SetStdHandle
GetStartupInfoA
LCMapStringW
SetConsoleCursorPosition
CompareStringA
CompareStringW
GetModuleFileNameA
GetSystemTimeAsFileTime
LoadLibraryA
HeapReAlloc
WideCharToMultiByte
GetTickCount
GetVersion
EnumResourceNamesA
SetEnvironmentVariableA
FlushFileBuffers
LocalAlloc
QueryPerformanceCounter
GetModuleHandleA
GetCommandLineW
VirtualAlloc
MultiByteToWideChar
GetLocaleInfoA
GetStdHandle
GetProcAddress
WriteProfileStringW
CreateMutexA
CloseHandle
ExpandEnvironmentStringsW
InterlockedIncrement
ReadFile
IsBadWritePtr
HeapDestroy
LeaveCriticalSection
VirtualFree
HeapAlloc
GetLocalTime
EnterCriticalSection
GetCurrencyFormatA

comctl32

_TrackMouseEvent
DrawInsert
ImageList_SetImageCount
InitCommonControlsEx
ImageList_GetDragImage
CreatePropertySheetPage
CreateToolbar
ImageList_Replace
ImageList_GetImageInfo
CreateStatusWindowA
ImageList_Write
ImageList_SetFilter
ImageList_LoadImageW
CreatePropertySheetPageA
CreateMappedBitmap
ImageList_ReplaceIcon
ImageList_Add
ImageList_LoadImageA
ImageList_Destroy
ImageList_Copy
MakeDragList
ImageList_Remove
ImageList_DrawIndirect
CreateStatusWindowW
ImageList_GetImageCount
ImageList_LoadImage

user32

MessageBoxW
BeginDeferWindowPos
IsCharLowerW
GetSubMenu
RegisterClassA
GetMenuBarInfo
GetWindowRgn
ShowWindow
CloseWindow
RegisterClassExA
UnpackDDElParam
SetWindowLongA
CreateWindowExA
DdeAbandonTransaction

Sections

.text
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b7134fc92139c251e52531ce8231948

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

comctl32

user32

Sections

.text Size: 314KB - Virtual size: 314KB

.rdata Size: 12KB - Virtual size: 30KB

.data Size: 102KB - Virtual size: 101KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 314KB - Virtual size: 314KB

.rdata
Size: 12KB - Virtual size: 30KB

.data
Size: 102KB - Virtual size: 101KB

.rsrc
Size: 10KB - Virtual size: 10KB