2b8542c67b53698272d723f16448ebf4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b8542c67b53698272d723f16448ebf4_JaffaCakes118
Size

214KB
MD5

2b8542c67b53698272d723f16448ebf4
SHA1

5713bff9d1cff6bd2d1b6393c8903129b03b3025
SHA256

81a6e3de67fc99892524286adb629acd7d0ce6157acac107e3ebc8e21fc5a5b5
SHA512

19def7d180242c67ecf6c0de7fbf4d4de0dd8128e0d4a5eae4c4c2807dbd59ad8c8cfdd222fea2d20d120ebb1453f7598fd2d1fc84e79f7620cd7505ff4766a2
SSDEEP

6144:mzVl4Ch8XsuIR3jP/ifj75o5Cvq24y+XtO:CVl4CecdT/ifj7uCF+XtO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b8542c67b53698272d723f16448ebf4_JaffaCakes118

Files

2b8542c67b53698272d723f16448ebf4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0a83944a1c25d29c76aab526ce6a60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CreateFileW
CreateProcessA
DeleteCriticalSection
FormatMessageA
GetCurrentProcess
GetFileSize
GetStdHandle
GetSystemDefaultLCID
GetTempPathW
GlobalFindAtomA
HeapCreate
HeapReAlloc
LoadLibraryExW
LoadResource
ReadFile
ResetEvent
SetEvent
SetFileAttributesW
SetFilePointer
SetThreadPriority
SystemTimeToFileTime
TerminateThread
UnhandledExceptionFilter
WaitForMultipleObjects
WriteFile
lstrlenA

shell32

CommandLineToArgvW
DoEnvironmentSubstW
DragQueryFileW
ExtractAssociatedIconW
SHAppBarMessage
SHChangeNotify
SHGetDesktopFolder
SHGetMalloc
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
ShellExecuteW

gdi32

CopyMetaFileW
CreateBitmap
CreateEllipticRgn
CreateFontA
CreatePalette
DeleteEnhMetaFile
EndDoc
EndPath
ExtFloodFill
GetCurrentObject
GetCurrentPositionEx
GetNearestColor
GetRegionData
GetStockObject
GetSystemPaletteEntries
GetTextAlign
GetTextExtentPoint32A
GetTextExtentPointW
MaskBlt
RectInRegion
RoundRect
SelectClipPath
SelectPalette
SetBkMode
SetTextAlign
SetWinMetaFileBits
StretchDIBits

comctl32

CreateToolbarEx
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_Destroy
ImageList_DragLeave
ImageList_DrawEx
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetImageCount
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Write
InitCommonControls

user32

CharLowerA
CreateWindowExA
DefWindowProcA
DrawIconEx
EnableWindow
EnumWindows
EqualRect
FindWindowA
GetActiveWindow
GetDCEx
GetDesktopWindow
GetMenu
GetMenuItemID
GetMenuState
GetPropA
IsChild
IsRectEmpty
IsWindow
OemToCharA
RegisterClassA
RemovePropA
ScreenToClient
SetCapture
SetFocus
SetPropA
SetWindowLongA
SystemParametersInfoA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0a83944a1c25d29c76aab526ce6a60b

Headers

File Characteristics

Imports

kernel32

shell32

gdi32

comctl32

user32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 99KB - Virtual size: 98KB

.rsrc Size: 22KB - Virtual size: 140KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 99KB - Virtual size: 98KB

.rsrc
Size: 22KB - Virtual size: 140KB