2ca1252a97c9e12654ef49b4c8efa488_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ca1252a97c9e12654ef49b4c8efa488_JaffaCakes118
Size

444KB
MD5

2ca1252a97c9e12654ef49b4c8efa488
SHA1

a480d0393c3161c5362143c51ed2151e42634d36
SHA256

04a7e081e5a068ecb202ffabe836996080415f29e3e3f484320b8e52a5783f19
SHA512

8bbe4687111a058fa5de12521e44d886ea9b4e3565b49306a98d3774155b24a4c01623c570d5c6dd439aec6cae7447216cfa5f84ad0765ad612c5fd3f4769044
SSDEEP

12288:6LhuYIN06hx7MTtZQlkQP7JIsJa8MB6k+dv46pm40fZlwZx+:rxIsFMMvOs0fZlwZx+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ca1252a97c9e12654ef49b4c8efa488_JaffaCakes118

Files

2ca1252a97c9e12654ef49b4c8efa488_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6cb76976b3fadfcbc8526fe1d2a873d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetCurrentDirectoryA
GetFileAttributesA
LoadLibraryA
FreeLibrary
GetProcAddress
CreateMutexA
GetLastError
GetDriveTypeA
GetVolumeInformationA
CreateFileA
WriteFile
CloseHandle
lstrcpyA
LCMapStringW
GetExitCodeProcess
SetFilePointer
GetCurrentProcess
ReadFile
ExitProcess
GetVersion
TerminateProcess
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
SetStdHandle
HeapSize
RtlUnwind
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapAlloc
FlushFileBuffers
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile
LCMapStringA
HeapFree
CreateProcessA
WaitForSingleObject
GetTickCount
lstrlenA
HeapReAlloc

user32

PostMessageA
SetDlgItemTextA
SendDlgItemMessageA
DialogBoxParamA
SetCursor
LoadCursorA
SetDlgItemInt
GetDlgItemInt
SendMessageA
PostQuitMessage
CreateDialogParamA
GetDlgItem
ScreenToClient
GetCursorPos
SetWindowPos
GetMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
GetDC
ReleaseDC
DefWindowProcA
GetSystemMetrics
LoadIconA
LoadImageA
CreateWindowExA
EndDialog
ShowCursor
wsprintfA
MessageBoxA
RegisterClassExA
RegisterClassA
ClientToScreen
UpdateWindow
GetClientRect
DestroyWindow
GetWindowRect
MoveWindow
SetFocus
GetDlgItemTextA
ShowWindow

gdi32

TextOutA
PatBlt
SetTextColor
GetStockObject
SetBkMode
SelectObject
CreateCompatibleDC
CreateDIBitmap
DeleteObject
DeleteDC
SetDIBitsToDevice
BitBlt
GetPixel
CreateCompatibleBitmap
GetTextMetricsA

comdlg32

GetOpenFileNameA

advapi32

GetUserNameA

shell32

ShellExecuteA

comctl32

ord17

winmm

timeBeginPeriod
timeGetDevCaps
timeEndPeriod
timeSetEvent
timeKillEvent
joyGetDevCapsA
joyGetPos
mciSendCommandA

wsock32

closesocket
WSACleanup
WSAStartup
WSAAsyncSelect
connect
WSAGetLastError
send
recv
ntohs
ioctlsocket
socket

ddraw

DirectDrawCreateEx

dsound

ord1

Sections

.text
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jrdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6cb76976b3fadfcbc8526fe1d2a873d0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

winmm

wsock32

ddraw

dsound

Sections

.text Size: 220KB - Virtual size: 219KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 32KB - Virtual size: 1.2MB

.rsrc Size: 112KB - Virtual size: 109KB

.jrdata Size: 68KB - Virtual size: 68KB

.text
Size: 220KB - Virtual size: 219KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 32KB - Virtual size: 1.2MB

.rsrc
Size: 112KB - Virtual size: 109KB

.jrdata
Size: 68KB - Virtual size: 68KB