2b4121d392c4853bee3c5f7a5ed9ad40_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b4121d392c4853bee3c5f7a5ed9ad40_JaffaCakes118
Size

467KB
MD5

2b4121d392c4853bee3c5f7a5ed9ad40
SHA1

db0947afb13c62479b1b9c713ae9b57e7645d018
SHA256

110f8030714b82319ce9c6fe99f43aac35b632aa55f24cd81d6b90e16c714561
SHA512

e1c328fa3dbd25d822842f560516853a89f47d3185b930e88f260d34c6a0d1b7863b86c61543ce888a8747c8688922c8fa3b30feb0ad3843e639fc283f7c6852
SSDEEP

6144:ewCpQl5CgaVnDlSv9nFNNFH7snsIkKQBdpGsr17m+BfoMIlORggIZWlf1jnROG1q:VCerCgqw9F2ns4mpGZ+1oXlcNjvq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b4121d392c4853bee3c5f7a5ed9ad40_JaffaCakes118

Files

2b4121d392c4853bee3c5f7a5ed9ad40_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2e8ce81c38b98155cfdee2bbb3b6c571

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

GetSysColor
DdeCmpStringHandles
ChildWindowFromPointEx
CreateWindowExA
ToAsciiEx
LoadCursorW
ModifyMenuA
EnableWindow
DefMDIChildProcA
CharUpperBuffW
CreateMDIWindowW
OpenInputDesktop
ShowWindow
SetWinEventHook
TileWindows
SetWindowLongW
ChangeDisplaySettingsExW
RegisterClassExA
SendMessageTimeoutA
GetKeyboardLayoutNameW
MessageBoxA
FrameRect
RegisterClassA
VkKeyScanA

shell32

SHGetPathFromIDListA
DoEnvironmentSubstA

comdlg32

FindTextA
GetSaveFileNameA

gdi32

GetPaletteEntries
GetPixel
CreateDCA
GetICMProfileW
GetDeviceCaps
CreateBitmap
GetBrushOrgEx
SetTextAlign
PolyBezier
RectInRegion
SetDeviceGammaRamp
CheckColorsInGamut
Rectangle
DeleteDC

kernel32

EnumDateFormatsExA
GetSystemTimeAsFileTime
ReadFile
VirtualAlloc
SetLastError
TlsGetValue
GetProcAddress
GetStartupInfoA
GetDateFormatA
GetLocaleInfoW
LeaveCriticalSection
QueryPerformanceCounter
HeapCreate
EnterCriticalSection
WriteFile
GetOEMCP
FreeEnvironmentStringsW
GetStringTypeW
GetUserDefaultLCID
GetCPInfo
GetCurrentThreadId
UnhandledExceptionFilter
GetEnvironmentStrings
GetCurrentThread
GetCurrentProcess
VirtualProtect
GetTimeZoneInformation
InterlockedCompareExchange
OpenMutexA
VirtualQuery
SetThreadPriority
GetStdHandle
LCMapStringA
GlobalHandle
GetModuleFileNameA
IsValidLocale
TlsAlloc
GetModuleHandleA
SetHandleCount
IsValidCodePage
lstrcmpiA
MultiByteToWideChar
GetVersionExA
CompareStringA
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
HeapSize
EnumSystemLocalesA
RtlUnwind
HeapDestroy
HeapAlloc
HeapReAlloc
GetCommandLineA
InterlockedExchange
FreeEnvironmentStringsA
DebugActiveProcess
CloseHandle
ExitProcess
InitializeCriticalSection
TerminateProcess
GetStartupInfoW
GetACP
LCMapStringW
SetEnvironmentVariableA
EnumCalendarInfoExW
LoadLibraryA
TlsFree
GetCurrentProcessId
lstrcmpi
CreateMutexA
VirtualFree
SetFilePointer
FlushFileBuffers
PulseEvent
GetStringTypeA
GetSystemInfo
TlsSetValue
GetFileType
GetTimeFormatA
GetTickCount
IsBadWritePtr
CompareStringW
HeapLock
DeleteCriticalSection
InterlockedIncrement
HeapFree
GetLocaleInfoA
SetStdHandle

wininet

InternetCheckConnectionA
DeleteUrlCacheContainerW
FtpCommandW
InternetGetCertByURLA
InternetGetCertByURL
InternetTimeToSystemTime

Sections

.text
Size: 315KB - Virtual size: 314KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e8ce81c38b98155cfdee2bbb3b6c571

Headers

File Characteristics

Imports

comctl32

user32

shell32

comdlg32

gdi32

kernel32

wininet

Sections

.text Size: 315KB - Virtual size: 314KB

.rdata Size: 37KB - Virtual size: 43KB

.data Size: 103KB - Virtual size: 102KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 315KB - Virtual size: 314KB

.rdata
Size: 37KB - Virtual size: 43KB

.data
Size: 103KB - Virtual size: 102KB

.rsrc
Size: 11KB - Virtual size: 10KB