2ebe9f0df678c2ab9b85cf4a3b657ecb_JaffaCakes118

General

Target

2ebe9f0df678c2ab9b85cf4a3b657ecb_JaffaCakes118
Size

303KB
MD5

2ebe9f0df678c2ab9b85cf4a3b657ecb
SHA1

0358c2a6777f52b725b40fbbaa53c5a52a3f88b1
SHA256

e5b9720c9948b2c95619721c5d711b4630688a958175ceafac7df0c059665f20
SHA512

40fd0f494a2b28f2f0f9a915b1453c368ab782828efcf9ae2e2ce8cbfb5474e4b832349bc376a340f51c118a5df0f790c323cbac5bd84f9790d1f703dfb1886f
SSDEEP

6144:ODfEB2X5feHG5TdFALRUrrtgFtgyRrud8b/:yqieeALRUrDyGy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ebe9f0df678c2ab9b85cf4a3b657ecb_JaffaCakes118

Files

2ebe9f0df678c2ab9b85cf4a3b657ecb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

df81e74fcfad2a685352e080e7c3ea11

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidCodePage
SetEnvironmentVariableA
SetLastError
GetEnvironmentStringsW
GetProcAddress
SetUnhandledExceptionFilter
HeapReAlloc
TlsAlloc
GetFileType
InterlockedIncrement
GetCurrentProcessId
HeapAlloc
GetCPInfo
GetTimeFormatA
VirtualFree
GetModuleHandleA
Sleep
GetCompressedFileSizeA
EnumSystemLocalesA
UnhandledExceptionFilter
GetVersionExA
LeaveCriticalSection
GetLocaleInfoA
LCMapStringW
TlsFree
GetACP
InitializeCriticalSection
FreeEnvironmentStringsW
GlobalFlags
ExitProcess
GetTickCount
FreeEnvironmentStringsA
MultiByteToWideChar
HeapFree
GetStartupInfoA
GetModuleFileNameA
IsValidLocale
LoadLibraryA
QueryPerformanceCounter
GetProcessHeap
VirtualAlloc
CompareStringW
GetLastError
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
GetStdHandle
GetTimeZoneInformation
HeapDestroy
WideCharToMultiByte
EnterCriticalSection
SetHandleCount
GetLocaleInfoW
GetSystemTimeAsFileTime
GetStringTypeA
GetDateFormatA
CompareStringA
GetStringTypeW
GetUserDefaultLCID
GetCurrentThread
TlsSetValue
TlsGetValue
LCMapStringA
GetCommandLineA
HeapCreate
WriteFile
FreeLibrary
SetConsoleCtrlHandler
GetEnvironmentStrings
HeapSize
DeleteCriticalSection
InterlockedExchange
IsDebuggerPresent
InterlockedDecrement
GetOEMCP

comdlg32

ReplaceTextA
ChooseFontA
PrintDlgW
FindTextW
ReplaceTextW
LoadAlterBitmap
ChooseColorA
PageSetupDlgA
PageSetupDlgW
GetSaveFileNameW
ChooseFontW
ChooseColorW
GetOpenFileNameA
GetSaveFileNameA
GetOpenFileNameW
GetFileTitleA
FindTextA
PrintDlgA

Sections

.avx��
Size: 299KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

df81e74fcfad2a685352e080e7c3ea11

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.avx���� Size: 299KB - Virtual size: 299KB

.avx��
Size: 299KB - Virtual size: 299KB