2b4a67c0411bb0dae310777a73dbcf33_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b4a67c0411bb0dae310777a73dbcf33_JaffaCakes118
Size

304KB
MD5

2b4a67c0411bb0dae310777a73dbcf33
SHA1

fa51453e69827088afe5e3269d98660de1131e34
SHA256

55b2c49abdc1f497728acd36345a0bf849a9147bd0599fbb551db39356db96ed
SHA512

619e93918db03f122aa020fc053e54b36aa9cc44f37175750a537d3fb0772f0e84d63d5aa572028b6c73962c55831e74d61477da6c3f2218b0002864c6706578
SSDEEP

3072:lpADybD7W40daCoIEPK3kMee5k0WXm3StKGB1aooKyghA3Ts50dHGidOZZqSjM2W:lzn7Ud1hMVoyWCtr1pQ5GJQd+ODwfc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b4a67c0411bb0dae310777a73dbcf33_JaffaCakes118

Files

2b4a67c0411bb0dae310777a73dbcf33_JaffaCakes118
.exe windows:4 windows x86 arch:x86

922136ea670f2f4531d5543352ee04ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

user32

DdeCmpStringHandles
TranslateAcceleratorA
DefWindowProcA
DdePostAdvise
InternalGetWindowText
EnumWindows
CascadeWindows
HideCaret
CreateDesktopA
GetClassLongW
DefWindowProcW
MessageBoxA
ShowWindow
ReplyMessage
IsWindowUnicode
DestroyWindow
RegisterClassExA
CreateWindowExA
RegisterClassA
EnumDisplayDevicesW
LockWindowUpdate
DrawTextA

kernel32

lstrcpynW
GetModuleHandleA
GetExitCodeThread
HeapCreate
GetCompressedFileSizeA
TerminateThread
TlsAlloc
GetCurrentProcessId
DeleteCriticalSection
GetCurrentDirectoryW
LeaveCriticalSection
VirtualQuery
GetEnvironmentStringsW
lstrcmpA
UnhandledExceptionFilter
IsValidLocale
GetOEMCP
ReadFile
HeapDestroy
GetStartupInfoA
GetProcAddress
AllocConsole
GetEnvironmentVariableA
HeapSize
GetPrivateProfileStringA
GetFileType
HeapFree
InitializeCriticalSection
WritePrivateProfileStringA
LoadLibraryExA
TlsSetValue
CreateMutexA
OpenFile
VirtualAlloc
WideCharToMultiByte
LoadLibraryA
LCMapStringW
GetDateFormatA
DebugBreak
RtlMoveMemory
GetUserDefaultLCID
SetLastError
OpenMutexA
IsBadWritePtr
ExpandEnvironmentStringsW
SetConsoleTextAttribute
FreeEnvironmentStringsA
WaitNamedPipeW
TerminateProcess
FindResourceExA
LocalLock
GetCPInfo
HeapReAlloc
FreeResource
GetStringTypeW
VirtualFree
CompareStringA
GetACP
SetFilePointer
TlsGetValue
MultiByteToWideChar
GetEnvironmentStrings
lstrlenW
CreateProcessW
EnterCriticalSection
GetModuleFileNameA
GetCommandLineA
GetLocaleInfoW
EnumSystemLocalesA
SetStdHandle
GetTickCount
GetCurrentThread
SetEnvironmentVariableA
lstrcpynA
GetSystemInfo
WriteFile
WriteConsoleInputW
SetConsoleMode
GetSystemTimeAsFileTime
SetHandleCount
ReadFileEx
QueryPerformanceCounter
VirtualProtect
GetTimeFormatA
HeapAlloc
FreeEnvironmentStringsW
IsValidCodePage
InterlockedExchange
RtlUnwind
TlsFree
GetVersionExA
ExitProcess
GetStdHandle
SetConsoleCtrlHandler
CreateEventW
DeleteFileW
GetCurrentThreadId
GetStringTypeA
GetLocaleInfoA
GetLastError
GetTimeZoneInformation
VirtualProtectEx
CommConfigDialogW
GetProfileSectionA
CompareStringW
GetCurrentProcess
SetUnhandledExceptionFilter
LCMapStringA
FlushFileBuffers
CloseHandle

gdi32

CreateBrushIndirect
DeleteDC
CreateRoundRectRgn
CreateDCW
GetObjectA
CreateScalableFontResourceA
UpdateICMRegKeyA
EnumFontFamiliesExA
GetDeviceCaps
GetMetaFileA

shell32

DragQueryPoint

comctl32

ImageList_GetFlags
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Write
DrawStatusText
ImageList_SetOverlayImage
ImageList_AddIcon
ImageList_Merge
ImageList_GetImageRect
ImageList_DragLeave
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_SetFilter

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

922136ea670f2f4531d5543352ee04ab

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

shell32

comctl32

Sections

.text Size: 80KB - Virtual size: 78KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 92KB - Virtual size: 99KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 80KB - Virtual size: 78KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 92KB - Virtual size: 99KB

.rsrc
Size: 60KB - Virtual size: 56KB