2bfbd15b505ca0e11dc408587055c85e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2bfbd15b505ca0e11dc408587055c85e_JaffaCakes118
Size

348KB
MD5

2bfbd15b505ca0e11dc408587055c85e
SHA1

2630b9bf8ade380aeb599d0ac68306e47f82fa36
SHA256

66b8d2f24e673264273b99fb7ea7371460360fcedca1a91c820593d553ab7ac9
SHA512

f44502c1a40a72849c2c0d3f33948b45c948cfa083a50494733b8d0dccb13c936385d92231de5119a609cc63c82e8aff40ef0489d2d0dc39c5686d80a49ace46
SSDEEP

6144:Flb+OzlPLn2V2tCd2f6uiKKfJ+4bTrOb1K474W/2OOMhXtggV8av:732VGCMf6umMYTY1K4UW+cttggOav

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bfbd15b505ca0e11dc408587055c85e_JaffaCakes118

Files

2bfbd15b505ca0e11dc408587055c85e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d9c7fcc4ad097bb0ce03953bade56cb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
QueryPerformanceCounter
VirtualFree
GetACP
WaitForDebugEvent
GetSystemTime
VirtualProtect
GetTimeFormatA
GetLocaleInfoW
TlsFree
GetCompressedFileSizeA
GetSystemInfo
VirtualAllocEx
GetUserDefaultLCID
OpenMutexA
GetStringTypeA
HeapSize
IsValidLocale
WritePrivateProfileSectionA
SetVolumeLabelA
GetCurrentThread
VirtualQuery
CreateMutexA
GetLastError
DeleteCriticalSection
GetStringTypeW
ExitProcess
InterlockedExchange
GetStartupInfoA
UnhandledExceptionFilter
GetCommandLineW
GetModuleFileNameA
GetCPInfo
OpenSemaphoreA
CompareStringW
SetEnvironmentVariableA
GetThreadTimes
FreeEnvironmentStringsA
GlobalAlloc
TlsSetValue
SetConsoleCtrlHandler
RtlUnwind
GlobalFlags
GetOEMCP
GetFileType
HeapFree
SetHandleCount
GetCurrentProcessId
CloseHandle
HeapCreate
WaitCommEvent
PulseEvent
FlushFileBuffers
GetCurrencyFormatW
SetStdHandle
VirtualAlloc
MultiByteToWideChar
LCMapStringA
HeapReAlloc
LoadLibraryA
IsValidCodePage
lstrcmpi
CompareStringA
GetTickCount
GetCurrentThreadId
TlsAlloc
GetLocaleInfoA
GetVersionExA
HeapValidate
TerminateProcess
GetEnvironmentStringsW
WriteFile
GetStartupInfoW
GetNamedPipeInfo
GetProcAddress
GetProfileSectionA
GlobalHandle
WideCharToMultiByte
GetTimeZoneInformation
InitializeCriticalSection
DeleteFileA
FreeEnvironmentStringsW
lstrcmpiW
WriteConsoleOutputCharacterW
LeaveCriticalSection
GetNamedPipeHandleStateA
GetEnvironmentStrings
IsBadWritePtr
SetFilePointer
CreateFileW
GetDateFormatA
GetModuleFileNameW
GetSystemTimeAsFileTime
EnumSystemLocalesA
GetCurrentProcess
ReadFile
HeapAlloc
LCMapStringW
SetLastError
GetStdHandle
GetCommandLineA
GetModuleHandleA
EnterCriticalSection
TlsGetValue

comctl32

ImageList_DragShowNolock
ImageList_LoadImageA
InitMUILanguage
ImageList_LoadImage
GetEffectiveClientRect
ImageList_LoadImageW
ImageList_Draw
DrawStatusText
ImageList_GetFlags
ImageList_SetFilter
ImageList_SetDragCursorImage
DrawStatusTextA
CreateToolbarEx
DrawInsert
ImageList_ReplaceIcon
ImageList_GetImageCount
InitCommonControlsEx
ImageList_Destroy
CreateUpDownControl

user32

wsprintfA
DrawCaption
RegisterClassA
GetClassInfoW
LoadMenuW
GetTitleBarInfo
CreateWindowExA
GetKeyboardLayoutNameA
BroadcastSystemMessageA
CloseClipboard
DestroyAcceleratorTable
SetMenuItemBitmaps
MessageBoxA
GetWindow
EnableWindow
RemovePropW
SetProcessDefaultLayout
SetWindowWord
VkKeyScanExA
MapDialogRect
GetCapture
DefWindowProcA
ActivateKeyboardLayout
ShowWindow
GetMenuItemRect
UnregisterClassW
GetClassNameW
GetComboBoxInfo
GetMonitorInfoA
DrawStateA
IsCharLowerA
SendIMEMessageExA
DestroyWindow
EndMenu
EnumDisplayDevicesW
GetMenuContextHelpId
DragObject
GetMenuDefaultItem
LookupIconIdFromDirectory
ShowScrollBar
SetScrollRange
PackDDElParam
wvsprintfW
EnumChildWindows
RegisterClassExA
RegisterWindowMessageA
CharNextExA
CascadeWindows
EnumDisplaySettingsA
GetPriorityClipboardFormat
DdeDisconnectList
SetLastErrorEx

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d9c7fcc4ad097bb0ce03953bade56cb

Headers

File Characteristics

Imports

kernel32

comctl32

user32

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 96KB - Virtual size: 104KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 96KB - Virtual size: 104KB

.rsrc
Size: 20KB - Virtual size: 18KB