2b6ba195cacd9efc94413a2670601f6a_JaffaCakes118

General

Target

2b6ba195cacd9efc94413a2670601f6a_JaffaCakes118
Size

477KB
MD5

2b6ba195cacd9efc94413a2670601f6a
SHA1

2637ad0b1ddf2db2f82ef2aba1ae70a748bb66e7
SHA256

818abffdcab92c8ab93a00c094ff9baa88d11f61cdeb82181c2c1b901a99dfc3
SHA512

59381c471fbcd4a32eb6f9d84b3ec026ed600befaac0f1da9f5e6602d5207c682c4e4826a24e2ea76c00de5c04ee34573350b521db2f997cbab5e3add4767be4
SSDEEP

6144:I2OC37zqtUPzYa04l1oymFupQjRfC3SDoAylrDQW95Tj5ICMKNjF:I2/C6PMgHALBCE6nhZBfNjF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b6ba195cacd9efc94413a2670601f6a_JaffaCakes118

Files

2b6ba195cacd9efc94413a2670601f6a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

216e1d8e85a8b09d8913b96f5041a76c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetProcAddress
WritePrivateProfileStringA
GetModuleHandleA
Sleep
GetPrivateProfileStringA
LoadLibraryA
GetTickCount
GetStartupInfoA

user32

UpdateWindow
InvalidateRect
DispatchMessageA
KillTimer
SetTimer
DialogBoxParamA
PostMessageA
DestroyWindow
GetWindowRect
PostQuitMessage
DefWindowProcA
SendMessageA
GetDlgItem
EnableWindow
GetDlgItemTextA
EndDialog
SendDlgItemMessageA
SetDlgItemTextA
CreateWindowExA
ShowWindow
LoadStringA
LoadCursorA
LoadIconA
RegisterClassA
GetMessageA
SetWindowTextA
TranslateMessage

gdi32

GetStockObject
CreateSolidBrush

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strcpy
strcmp
sscanf
memset
getenv
??2@YAPAXI@Z
atoi
_except_handler3
_ftime
memcpy
??3@YAXPAX@Z
time
_pctype
_isctype
__mb_cur_max
strlen
sprintf
srand

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 445KB - Virtual size: 445KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

216e1d8e85a8b09d8913b96f5041a76c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 1KB - Virtual size: 16KB

.rsrc Size: 445KB - Virtual size: 445KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 1KB - Virtual size: 16KB

.rsrc
Size: 445KB - Virtual size: 445KB