2cf05dfa9fea32277e38023950f105f5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2cf05dfa9fea32277e38023950f105f5_JaffaCakes118
Size

144KB
MD5

2cf05dfa9fea32277e38023950f105f5
SHA1

6172a63f05c6d034ee30b01be0cc0adad1cbab26
SHA256

2049b4e1bf3bae7696394b2efc85103ecc1f6953e152f1a8f67fc12e2db5a228
SHA512

f306ae06ea719b31f2bdf6ff2e40f42c68d6a0bfa990ddc33df8a9a8dc445257b48bece2897888cdabc973a4acdeb48712c4799d0b7c6165cf837db9338d0c83
SSDEEP

3072:D8uIs5431Ezbrux7zvp3ZZOKxcGgOljoAJiTdjuzHwUx:n5BrCvppchOlrJi+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cf05dfa9fea32277e38023950f105f5_JaffaCakes118

Files

2cf05dfa9fea32277e38023950f105f5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c5a5845278fc0e2948b39aaaabcadaf7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetLocaleInfoA
lstrlenW
GetModuleHandleA
GlobalLock
GetStartupInfoA
GetLastError

msvcrt

_adjust_fdiv
__set_app_type
_itoa
__badioinfo
log
_initterm
__getmainargs
_isctype
__p__fmode
__p__commode
_fstat
_itow
wcstoul
_XcptFilter
_acmdln
_except_handler3
exit
__setusermatherr

user32

SetCapture
AdjustWindowRectEx
WindowFromPoint
EnumThreadWindows
TrackPopupMenu
CallWindowProcA
EnableMenuItem
WinHelpA
SetCursor
GetCursorPos

shell32

SHGetSpecialFolderPathW
DragAcceptFiles
SHGetDesktopFolder
SHGetFileInfo
ExtractIconExA

advapi32

RegOpenKeyA
RegQueryValueExW
GetSecurityDescriptorDacl
OpenServiceA
GetUserNameA
GetLengthSid
OpenProcessToken
CopySid
IsValidSid

comctl32

ImageList_Add
ImageList_GetIcon
ImageList_SetIconSize
PropertySheetW
ImageList_Read
CreatePropertySheetPageA
ImageList_LoadImageW

oleaut32

SafeArrayRedim
SysStringLen
SafeArrayUnaccessData

ole32

CoUninitialize
CoInitialize
CoRegisterClassObject
StringFromIID
StringFromGUID2

version

VerInstallFileA
VerInstallFileW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerLanguageNameA
GetFileVersionInfoSizeA
VerFindFileW

gdi32

MoveToEx
CreateRoundRectRgn
GetDeviceCaps
ScaleWindowExtEx
CreateEllipticRgn
CreateFontIndirectW
GetEnhMetaFileDescriptionA
CreatePen
SetPixel
LineTo
ScaleViewportExtEx
CreateCompatibleBitmap

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c5a5845278fc0e2948b39aaaabcadaf7

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

advapi32

comctl32

oleaut32

ole32

version

gdi32

Sections

.text Size: 63KB - Virtual size: 63KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 31KB - Virtual size: 100KB

.text
Size: 63KB - Virtual size: 63KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 31KB - Virtual size: 100KB