2b03bbd36fde432fbc7238cf90fd91bf_JaffaCakes118

General

Target

2b03bbd36fde432fbc7238cf90fd91bf_JaffaCakes118
Size

442KB
MD5

2b03bbd36fde432fbc7238cf90fd91bf
SHA1

f62c5e9574529f7f4071f18eddfc0bb96dd55070
SHA256

a7611e95b520786a7b8e11f771aef8dcef9b1982e2def4ca77c90f9ef7c9de8e
SHA512

135cdcc8f234a04b200caa0646aa8e0d8ff286bce2076f15676e17c22b5b5480a1a52331950b8e9a51ec35bdc2215a9cebf74f97f58455cf319ba66291077b1d
SSDEEP

12288:qBYpcHp7FfOV/5x137WoON0d/jKviE5rolT:qBYGPUH57WfN0d/WqE5r8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b03bbd36fde432fbc7238cf90fd91bf_JaffaCakes118

Files

2b03bbd36fde432fbc7238cf90fd91bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

32a734a7959b27e5c1978ef022424925

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadWritePtr
GetStartupInfoA
GetOEMCP
GetFileType
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetCurrentProcess
TlsSetValue
VirtualAlloc
GetStdHandle
MultiByteToWideChar
HeapReAlloc
SetLastError
EnterCriticalSection
SetHandleCount
HeapCreate
InterlockedExchange
GetModuleFileNameA
InitializeCriticalSection
WriteFile
ExitProcess
LCMapStringW
WideCharToMultiByte
GetDateFormatA
LoadLibraryA
GetTickCount
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetVersion
GetACP
QueryPerformanceCounter
DeleteCriticalSection
TlsGetValue
GetCommandLineA
VirtualQuery
GetCurrentThreadId
GetStringTypeW
HeapAlloc
TlsFree
HeapFree
FoldStringA
TerminateProcess
GetCurrentProcessId
GetEnvironmentStrings
LCMapStringA
VirtualFree
LocalShrink
GetCPInfo
GetStringTypeA
LeaveCriticalSection
GetCurrentThread
HeapDestroy
GetProcAddress
TlsAlloc
FreeEnvironmentStringsW
GetLastError
GetModuleHandleA

gdi32

PtVisible

comdlg32

ReplaceTextA
PageSetupDlgA
LoadAlterBitmap
ReplaceTextW
PrintDlgW
GetFileTitleW
GetSaveFileNameA
PrintDlgA
PageSetupDlgW
GetOpenFileNameA
ChooseColorA

Sections

.text
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32a734a7959b27e5c1978ef022424925

Headers

File Characteristics

Imports

kernel32

gdi32

comdlg32

Sections

.text Size: 161KB - Virtual size: 160KB

.data Size: 270KB - Virtual size: 270KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 161KB - Virtual size: 160KB

.data
Size: 270KB - Virtual size: 270KB

.rsrc
Size: 9KB - Virtual size: 9KB