2c934b55bd13930728047e50aa868d8a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2c934b55bd13930728047e50aa868d8a_JaffaCakes118
Size

303KB
MD5

2c934b55bd13930728047e50aa868d8a
SHA1

89c7a9248912ab9439d5469f32c898ca45c76782
SHA256

f53a2684cf2538d66c48c605f9efd34a293addbc3436bc68efd3be961cdcb30f
SHA512

3e1d8d858922cec2eb10e5157dd3cb6eabbcc20ce8e08ed152814aac2103db67b217a25e2a84bbebe4e08e1f9a6a6755dfa93c2cf7a0a71975c6eb2cf67e32cc
SSDEEP

6144:LkFxK24IeJrk05OMmRy4qc9FY2nfe5k/Xj7mmZA4SMii58h6K:LkuRpYry4qc/rff/XPmmlii58h5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2c934b55bd13930728047e50aa868d8a_JaffaCakes118

Files

2c934b55bd13930728047e50aa868d8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

78a069a206928099d1ae1cf47946204b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawMenuBar
GetMonitorInfoW
DefDlgProcA
GetClipboardData
WindowFromDC
DdeFreeDataHandle
InsertMenuItemW
CharUpperBuffW
RegisterClassExA
ModifyMenuA
SetProcessDefaultLayout
GetPriorityClipboardFormat
RemoveMenu
LoadKeyboardLayoutW
RegisterClassA
DrawFrameControl
CopyAcceleratorTableW
GetClipboardOwner
MapVirtualKeyW
RegisterClassExW
SetPropA
CreateCaret
IsChild
EndDeferWindowPos

comdlg32

FindTextW
ReplaceTextA

comctl32

InitCommonControlsEx

gdi32

CreateColorSpaceA
SetICMProfileA
GdiPlayJournal
SetROP2
GetWindowOrgEx
SetMapperFlags
DeleteEnhMetaFile
SelectPalette
GetBitmapBits
PolylineTo
FillRgn
GetTextCharset
CreateScalableFontResourceA
GetCharWidthFloatA
ResetDCA
PolyTextOutW
Ellipse
CreatePalette
GetTextFaceA
PaintRgn
UpdateICMRegKeyA

kernel32

WideCharToMultiByte
CloseHandle
ReadFile
GetStringTypeA
CompareStringA
GetStringTypeW
LeaveCriticalSection
GetSystemTimeAsFileTime
GetEnvironmentStringsW
GetFileAttributesA
GetCPInfo
VirtualFree
SetLocaleInfoW
SetStdHandle
InterlockedIncrement
GetLastError
FreeEnvironmentStringsA
GetProcAddress
OpenMutexA
LocalFileTimeToFileTime
GetEnvironmentStrings
FlushFileBuffers
IsBadWritePtr
CompareStringW
OpenEventA
InterlockedExchange
GetFileType
GetACP
LCMapStringW
EnterCriticalSection
SetEnvironmentVariableA
QueryPerformanceCounter
GetCommandLineA
FindResourceExW
TlsGetValue
GetStartupInfoA
GetModuleHandleA
InitializeCriticalSection
MultiByteToWideChar
TlsAlloc
GetOEMCP
SetLastError
IsBadReadPtr
HeapCreate
GetModuleFileNameA
GetLocalTime
TransmitCommChar
TerminateProcess
GetThreadContext
WriteFile
VirtualQuery
GetVersion
InterlockedDecrement
LCMapStringA
SetFilePointer
LoadLibraryA
GetCurrentThread
RtlUnwind
GetCurrentProcess
lstrcpynW
GetCurrentProcessId
DeleteCriticalSection
CreateMutexA
OpenWaitableTimerW
HeapAlloc
FreeEnvironmentStringsW
GetTimeZoneInformation
HeapFree
SetHandleCount
TlsSetValue
VirtualAlloc
GetCurrentThreadId
GetStdHandle
UnhandledExceptionFilter
HeapReAlloc
HeapDestroy
GetSystemTime
ExitProcess
GetTickCount
TlsFree

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78a069a206928099d1ae1cf47946204b

Headers

File Characteristics

Imports

user32

comdlg32

comctl32

gdi32

kernel32

Sections

.text Size: 116KB - Virtual size: 115KB

.rdata Size: 5KB - Virtual size: 20KB

.data Size: 170KB - Virtual size: 170KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 116KB - Virtual size: 115KB

.rdata
Size: 5KB - Virtual size: 20KB

.data
Size: 170KB - Virtual size: 170KB

.rsrc
Size: 10KB - Virtual size: 10KB