2e875105e247de40b62cf2ecc3345f54_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2e875105e247de40b62cf2ecc3345f54_JaffaCakes118
Size

560KB
MD5

2e875105e247de40b62cf2ecc3345f54
SHA1

b55b4d32d3056e10d1b64f03419e16310793b74a
SHA256

32b4b1ae80d15222e2a6b519bd89ab64e7ba19d393cdb0961ae9beccdd6cf490
SHA512

48c8cfa1bd6945b0c36d5406cbbe6a08af135e326e91ddc1fd02305a63bed2cbe33f5c8392bc186523429c6a2df3ccd123907f32bd5247c9b48ae53e0ff834fa
SSDEEP

12288:8jJL2Cwsd9I3KUpF2HHiySw7ClpqpianZ4gXVD6Tm:8Zez3PFyHioClpqpi0qq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e875105e247de40b62cf2ecc3345f54_JaffaCakes118

Files

2e875105e247de40b62cf2ecc3345f54_JaffaCakes118
.exe windows:4 windows x86 arch:x86

842620623d41ad15b070807ed79b630f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Imports

comctl32

ImageList_GetBkColor
GetEffectiveClientRect
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_GetIcon
DrawStatusTextA
ImageList_DragShowNolock
ImageList_SetImageCount
CreateStatusWindowA
ImageList_AddIcon
ImageList_Add
ImageList_GetIconSize
DrawStatusTextW
ImageList_GetFlags
ImageList_DragEnter
ImageList_SetBkColor
InitCommonControlsEx
ImageList_DragLeave
DrawStatusText

user32

MessageBoxW
RegisterClassExA
DefWindowProcA
RegisterClassA
DestroyWindow
CharToOemA
ShowWindow
CreateWindowExW

kernel32

VirtualProtect
LocalUnlock
ExitProcess
DeleteCriticalSection
HeapCreate
GetTickCount
FreeEnvironmentStringsA
GetTimeZoneInformation
GetCPInfo
GetFileType
GetCurrentProcess
HeapDestroy
GetSystemInfo
GetStdHandle
CloseHandle
CompareStringW
InterlockedExchange
CreateMutexA
GetModuleHandleA
VirtualFree
GetCurrentThreadId
GetStringTypeW
RtlMoveMemory
GetProcAddress
InterlockedDecrement
GetCurrentProcessId
LCMapStringA
TlsSetValue
SetStdHandle
GetSystemDefaultLangID
HeapFree
VirtualQuery
HeapAlloc
GetOEMCP
FoldStringA
QueryPerformanceCounter
GetModuleFileNameA
RtlUnwind
InterlockedIncrement
SetEnvironmentVariableA
TlsGetValue
GetLocaleInfoA
Sleep
IsBadWritePtr
GetLastError
GetVersionExA
GetPrivateProfileStructW
LCMapStringW
WaitCommEvent
GetCommandLineA
CompareStringA
LoadLibraryA
ReadFile
GetEnvironmentStrings
IsBadReadPtr
FlushFileBuffers
SetHandleCount
CreateRemoteThread
EnumSystemLocalesA
GetStringTypeA
TlsAlloc
GetEnvironmentStringsW
InitializeCriticalSection
DebugBreak
GetLocaleInfoW
TerminateProcess
SetConsoleCtrlHandler
VirtualAlloc
GetCurrentThread
HeapReAlloc
SetFilePointer
TlsFree
OutputDebugStringA
GetUserDefaultLCID
OpenMutexA
GetStartupInfoA
GetSystemTimeAsFileTime
HeapValidate
GetACP
EnterCriticalSection
LeaveCriticalSection
GetTimeFormatA
GetProfileStringA
IsValidCodePage
WriteFile
MultiByteToWideChar
GetLocalTime
FreeEnvironmentStringsW
SetLastError
IsValidLocale
WideCharToMultiByte
UnhandledExceptionFilter
GetDateFormatA
WaitNamedPipeA
ReadConsoleOutputA

shell32

SheGetDirA
ShellExecuteEx
SheSetCurDrive
ExtractAssociatedIconExW

gdi32

OffsetWindowOrgEx
GetOutlineTextMetricsW
GetTextCharsetInfo
Polygon
GetClipRgn
GdiPlayScript
CreateBitmapIndirect
GdiGetBatchLimit
SetRectRgn
CreateFontIndirectW
EnumMetaFile
CreateEllipticRgn
SetPixelFormat

Sections

.text
Size: 355KB - Virtual size: 355KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

842620623d41ad15b070807ed79b630f

Headers

File Characteristics

PDB Paths

Imports

comctl32

user32

kernel32

shell32

gdi32

Sections

.text Size: 355KB - Virtual size: 355KB

.rdata Size: 55KB - Virtual size: 80KB

.data Size: 100KB - Virtual size: 100KB

.rsrc Size: 47KB - Virtual size: 47KB

.text
Size: 355KB - Virtual size: 355KB

.rdata
Size: 55KB - Virtual size: 80KB

.data
Size: 100KB - Virtual size: 100KB

.rsrc
Size: 47KB - Virtual size: 47KB