2e8a40d60aceddf1d004d97d5c60e4e3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e8a40d60aceddf1d004d97d5c60e4e3_JaffaCakes118
Size

251KB
MD5

2e8a40d60aceddf1d004d97d5c60e4e3
SHA1

12196a03503370c016a1b02b80dda43e14fb7109
SHA256

8bb0f7119225c4914957e5d702fe9876e26568da0a1631a33c73f171b2b68bc0
SHA512

cd34e56b37198120f22684330e53f4622a57dc7f41c54244b55c65a18b7542327899aeb69d6f6c6261b9b41d482ab55c944edb728d5d5de448b475ce849069df
SSDEEP

6144:VWmWG8LJuXq9JL1LuqRq43skl6wpAzx+j4Ib5f1NwcaZZelV0:MtJnZuAdnxe4401gZe4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e8a40d60aceddf1d004d97d5c60e4e3_JaffaCakes118

Files

2e8a40d60aceddf1d004d97d5c60e4e3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4e7d83ef1e53aa66b35550ab16296a9b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memset

kernel32

GetFileAttributesExA
GlobalFree
GlobalAlloc
SetCommMask
GetComputerNameExW
GetStdHandle
LCMapStringW
WaitCommEvent
CreateWaitableTimerA
OpenSemaphoreW
SetThreadLocale
LocalSize
SetCommTimeouts
VirtualQuery
GetTimeFormatA
GetModuleFileNameW
GetStringTypeExW

gdi32

RemoveFontResourceW
GetClipBox
ExtFloodFill
SetViewportExtEx
EnumFontsW
CreateBitmapIndirect
GetTextColor
ExtTextOutA
FillRgn
SetDIBitsToDevice
CreatePen
GetTextExtentExPointW
SetTextAlign
IntersectClipRect
GetCharWidth32W
GetWindowOrgEx
StartPage

user32

GetMenuItemCount
GetDlgItemInt
IsWindow
AdjustWindowRectEx
GetKeyboardType
BeginDeferWindowPos
CharToOemA
SetDlgItemTextW
RegisterClassExA
GetWindowTextW
GetMenuStringA
TileWindows
DestroyAcceleratorTable
SendMessageTimeoutW
InvalidateRect
GetMenu
DialogBoxParamA
GetClassInfoExA
GetDC
FindWindowExW
IsWindowEnabled
SetClassLongW
CharToOemW
OemToCharA
MonitorFromPoint
InsertMenuItemW
HideCaret
RemoveMenu
LoadCursorA
PostMessageW
GetDlgCtrlID
IsWindowUnicode
GetClassLongW
SetParent
DialogBoxIndirectParamW

Exports

Exports

?NDJndjklIODUiuodjilkjDUIOioudIUODOI@@YGKEPA_WG@Z

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nfodat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 47KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dir
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e7d83ef1e53aa66b35550ab16296a9b

Headers

File Characteristics

Imports

ntdll

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 110KB - Virtual size: 109KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 87KB - Virtual size: 86KB

.nfodat Size: 1KB - Virtual size: 1KB

.temp Size: - Virtual size: 4KB

.port Size: 47KB - Virtual size: 95KB

.dir Size: 512B - Virtual size: 360B

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 110KB - Virtual size: 109KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 87KB - Virtual size: 86KB

.nfodat
Size: 1KB - Virtual size: 1KB

.temp
Size: - Virtual size: 4KB

.port
Size: 47KB - Virtual size: 95KB

.dir
Size: 512B - Virtual size: 360B

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB