2b6cecb2ca999813a0c0ee0cc15b9eed_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b6cecb2ca999813a0c0ee0cc15b9eed_JaffaCakes118
Size

103KB
MD5

2b6cecb2ca999813a0c0ee0cc15b9eed
SHA1

ffae29d6d69cb179ba69dce225bdbf9b40c00814
SHA256

a9f9bb30cefedceeb1876e15adf0a60056ce740d1e432d31d16655fbc1bab2b9
SHA512

8f88ce85b3c89d96b922f4bf306b526b287476a082ecb9ba026a4cb75bdf7842b48ad4bce7f2ab4a3836c1341d7d6b7d9ff67fae9d32499853141515d968b05c
SSDEEP

3072:/wLlNWDtRKiUBhPlkDBMJilmc47/fcyh6EbLzK:IJgXKRzkDBMJitqV6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b6cecb2ca999813a0c0ee0cc15b9eed_JaffaCakes118

Files

2b6cecb2ca999813a0c0ee0cc15b9eed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

badbbf3be1b9f4e96de7f813cea9aea8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileExA
DeleteFileA
ReadFile
GetConsoleMode
GetComputerNameA
ReadConsoleA
CopyFileW
FindAtomA
GetLastError
ExitThread
CreateThread
OpenFile
FindFirstFileA
GetFileTime
CreateDirectoryA
WriteFile
OpenFileMappingA
GetCPInfo
GetStdHandle
Sleep

gdi32

AddFontMemResourceEx
AbortPath
ExcludeClipRect
AddFontResourceA
CloseFigure
GetPixel
GetClipBox
DeleteDC
GetBrushOrgEx
AddFontResourceExA
CancelDC
SetTextColor
RestoreDC
CreateSolidBrush
CopyMetaFileA
GetDCOrgEx
ExtTextOutA
GetBitmapBits

advapi32

RegLoadKeyA
RegCreateKeyExA
RegDeleteKeyA
RegQueryInfoKeyA
RegQueryValueA
RegOpenKeyExA
RegEnumKeyExA
RegEnumKeyExW
RegReplaceKeyA
RegEnumValueA
RegQueryValueExW
RegOpenKeyA
RegLoadKeyW
RegEnumKeyW
RegQueryValueExA
RegQueryInfoKeyW
RegCreateKeyW
RegQueryValueW

user32

InsertMenuA
CloseWindow
GetDC
AlignRects
GetMenu
DrawTextW
GetCursor
CreateIcon
CopyImage
LoadCursorA
DialogBoxParamA
DrawIconEx
CopyRect
EndDialog
DrawTextA
GetWindowTextA
GetWindowTextLengthA
AppendMenuW

comctl32

ImageList_AddMasked
ImageList_Replace
ImageList_EndDrag
ImageList_Draw
ImageList_Read
ImageList_DragMove
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_AddIcon
ImageList_GetIconSize
ImageList_Copy
ImageList_BeginDrag
ImageList_DrawEx
InitCommonControls
ImageList_DragShowNolock
ImageList_DragEnter

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 93KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 934B

IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

badbbf3be1b9f4e96de7f813cea9aea8

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

user32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 93KB - Virtual size: 149KB

.reloc Size: - Virtual size: 934B

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 93KB - Virtual size: 149KB

.reloc
Size: - Virtual size: 934B

.rsrc
Size: 2KB - Virtual size: 2KB