2ad4fc0b4a34753f3b8bd508305f333f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ad4fc0b4a34753f3b8bd508305f333f_JaffaCakes118
Size

305KB
MD5

2ad4fc0b4a34753f3b8bd508305f333f
SHA1

bddf99b9da7fcb97917a8cf1daf6a008a7c5cd67
SHA256

f4c69a45c55fc866dd4b2501fb8f66851b02088025eeb97193b7c82419009828
SHA512

8fd88cb9572fd03600181d1ca2968ccae2bad688f21e0977ea37d3b7e8b11e2404c0dbe1708b8cc81867b96fc87e344c559269a9267e287a67f4b8be37bb7a93
SSDEEP

6144:kKOtjud6+1M/WSW+VTcg+UT0sGlCPwa1ZRMha6sm:cty14nTTcgEs2CPwLNz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ad4fc0b4a34753f3b8bd508305f333f_JaffaCakes118

Files

2ad4fc0b4a34753f3b8bd508305f333f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ccb9a25000d769f76fb87a00308ff953

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteAtom
DeleteFileW
ReadConsoleA
CreateThread
Sleep
GetStdHandle
SetLastError
CreateDirectoryA
GetCommandLineA
CopyFileW
GetCPInfo
GetFileTime
GetLastError
OpenFile
FindAtomA
GlobalFree
GetComputerNameA

gdi32

GetBrushOrgEx
DeleteObject
GetClipBox
AddFontResourceExA
AddFontResourceA
CopyMetaFileA
ExcludeClipRect
CreateSolidBrush
GetPixel
CancelDC
AddFontResourceExW
BeginPath
AddFontResourceTracking
SetTextColor
CloseMetaFile
AddFontMemResourceEx

user32

CopyIcon
AlignRects
GetWindowTextA
BlockInput
DialogBoxParamA
DrawTextA
AppendMenuA
DrawTextW
AppendMenuW
DrawIconEx
GetWindowTextLengthA
IsMenu
CreateIcon
CopyImage
GetDlgItem
LoadMenuA
GetFocus

advapi32

RegLoadKeyW
RegQueryValueW
RegQueryValueA
RegCreateKeyExA
RegQueryInfoKeyA
RegQueryInfoKeyW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyW
RegEnumValueA
RegEnumKeyExA
RegQueryValueExW
RegDeleteValueA
RegOpenKeyW
RegEnumKeyW
RegFlushKey
RegReplaceKeyA

comctl32

ImageList_Create
ImageList_GetIconSize
ImageList_DragLeave
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_Read
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_Destroy
ImageList_Remove
ImageList_EndDrag
ImageList_AddMasked
ImageList_Draw
ImageList_GetImageRect
ImageList_LoadImage
ImageList_AddIcon
ImageList_Copy

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ccb9a25000d769f76fb87a00308ff953

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

comctl32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 189KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 189KB

.rsrc
Size: 4KB - Virtual size: 2KB