2bcec5f11596ca9db43019bb3e2767ea_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2bcec5f11596ca9db43019bb3e2767ea_JaffaCakes118
Size

44KB
MD5

2bcec5f11596ca9db43019bb3e2767ea
SHA1

48004e57bcf99e432e200742f4e47c21ffcae2e2
SHA256

82d63802bf7505a731418f08d7d646fd99549b2818884eb2e0dece5aa48ecc19
SHA512

1fe5da809bdfe3126ce04e06cab7916c6d6634e3796174b15ecf7cf461a64981386ffa6d7105d788fde7682063d4d9111e431d09591126f2266e685d4580090c
SSDEEP

768:8N7GzpM156/PHdjN5IpUTA3otEcvIJy/TeYBkHC5O2VFCmrp/agGA:5z0563hnIpUTAWEcAKqYBkHC5O2VFCT2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bcec5f11596ca9db43019bb3e2767ea_JaffaCakes118

Files

2bcec5f11596ca9db43019bb3e2767ea_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ef9b71e1eb3ca7640d312dba6eb62512

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
OutputDebugStringA
CreateFileW
ReadFile
lstrcpyA
GetVersionExA
VirtualAlloc
Sleep
GetProcessHeap
HeapFree
HeapAlloc
lstrlenA
SetFilePointer
CreateFileA
CloseHandle
ExitProcess
IsProcessorFeaturePresent

user32

EndDialog
TranslateAcceleratorA
ReleaseDC
CreateWindowExA
MessageBoxA
DefWindowProcA
GetForegroundWindow
InflateRect
TranslateMessage
GetDC
PtInRect
BeginPaint
GetClientRect
wsprintfA
LoadIconA
LoadStringA
DrawTextA
FillRect
TrackPopupMenu
PostQuitMessage
RegisterClassExA
IsMenu
GetWindowRect
ScreenToClient
GetMessageA
DestroyWindow
EndPaint
GetDesktopWindow
SetWindowPos
LoadAcceleratorsA
ShowWindow
CreatePopupMenu
FrameRect
AppendMenuA
PostMessageA
DispatchMessageA
AdjustWindowRectEx
UpdateWindow
LoadCursorA
DialogBoxParamA
RegisterClassA
SetRect

gdi32

DeleteObject
SetBkMode
CreatePen
GetTextExtentPoint32A
MoveToEx
LineTo
SelectObject
CreateSolidBrush
GetStockObject

iphlpapi

GetTcpStatistics

comctl32

CreateToolbarEx

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef9b71e1eb3ca7640d312dba6eb62512

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

iphlpapi

comctl32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 21KB - Virtual size: 21KB

.CRT Size: 512B - Virtual size: 4B

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 21KB - Virtual size: 21KB

.CRT
Size: 512B - Virtual size: 4B

.rsrc
Size: 11KB - Virtual size: 10KB