2efc0de860d282d644a03c8a4b5926e1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2efc0de860d282d644a03c8a4b5926e1_JaffaCakes118
Size

640KB
MD5

2efc0de860d282d644a03c8a4b5926e1
SHA1

d759d33c9b54bdb87a589a66605bcd73b6c6c284
SHA256

066dc8899295d47caad853ad424983ff18a4f532fa42ba19e2d9adb3d3362f36
SHA512

5adb193f664b335aeee0520d35be08bd60c1d88d61b5731688842f87dd262c02db7ad5a350ef118fd0885ee23ece4beddcc3c0c87fe55ce780504a23643b502c
SSDEEP

12288:NnVIB7AybkuN58FCpSxQQpiDWG6SQV8Fo5dAYzKkg7C:xOB7AiD58Fa/Qjd/R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2efc0de860d282d644a03c8a4b5926e1_JaffaCakes118

Files

2efc0de860d282d644a03c8a4b5926e1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1f8df6f8fe9ae36994e9efcd04ddbfc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MapWindowPoints
GetClassInfoW
GetClassWord
OemKeyScan
ShowWindow
DdeConnectList
CreateWindowExA
TranslateMDISysAccel
VkKeyScanExA
TrackPopupMenuEx
SetMenuContextHelpId
GetThreadDesktop
SetWindowWord
EnumDisplayDevicesW
CreateMDIWindowA
DefWindowProcW
MessageBoxA
BlockInput
wsprintfW
RegisterClassA
DdeQueryStringA
ToUnicode
DestroyWindow
RegisterClassExA
CreateDialogIndirectParamW
EnumThreadWindows
ImpersonateDdeClientWindow
CharNextExA

kernel32

SetFilePointer
FreeEnvironmentStringsA
SetStdHandle
CompareStringW
VirtualProtect
GetLocaleInfoW
WideCharToMultiByte
LCMapStringW
ExitProcess
HeapSize
GetCurrentThread
LoadLibraryA
GetACP
TlsSetValue
GetEnvironmentStringsW
GetVersionExA
GetLongPathNameW
CreateMutexA
SetLastError
GetFileType
UnhandledExceptionFilter
GetStdHandle
VirtualAlloc
GetTimeFormatA
HeapAlloc
OpenMutexA
TlsGetValue
MoveFileExA
GlobalAddAtomW
GetSystemInfo
VirtualFree
GetUserDefaultLCID
GetStringTypeW
GetProcAddress
GetCurrentProcessId
GetModuleFileNameW
GetStringTypeA
GetCurrentProcess
LCMapStringA
IsValidCodePage
SetHandleCount
TlsFree
EnumSystemLocalesA
CompareStringA
DeleteCriticalSection
GetLastError
GetCommandLineA
GetStartupInfoW
GetTimeZoneInformation
MultiByteToWideChar
GetLocaleInfoA
GetTickCount
InterlockedExchange
GetStartupInfoA
TlsAlloc
HeapReAlloc
LeaveCriticalSection
InitializeCriticalSection
GetModuleHandleA
FlushFileBuffers
GetOEMCP
GetDateFormatA
GetCommandLineW
QueryPerformanceCounter
VirtualQuery
EnterCriticalSection
HeapDestroy
CloseHandle
GetEnvironmentStrings
GetSystemTimeAsFileTime
TerminateProcess
HeapCreate
ReadFile
RtlUnwind
GetCurrentThreadId
IsBadWritePtr
IsValidLocale
GetCPInfo
SetEnvironmentVariableA
WriteFile
HeapFree
GetModuleFileNameA
FreeEnvironmentStringsW

comctl32

ImageList_DrawIndirect
CreateStatusWindowA
DrawStatusTextA
ImageList_GetFlags
ImageList_Destroy
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Read
ImageList_SetBkColor
ImageList_SetOverlayImage
CreateUpDownControl
ImageList_SetDragCursorImage
CreateStatusWindowW
ImageList_DrawEx
ImageList_GetIconSize
GetEffectiveClientRect
CreatePropertySheetPageW
ImageList_GetImageCount

gdi32

CreateCompatibleDC
CreateFontW
GetGlyphOutline
SetBrushOrgEx
SetMetaRgn
GetTextCharsetInfo
CreateMetaFileA
CreateDIBSection
BitBlt
EndDoc
SetROP2
AngleArc
CreateBrushIndirect
PolyDraw
CreateEllipticRgn
WidenPath
IntersectClipRect

Sections

.text
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f8df6f8fe9ae36994e9efcd04ddbfc7

Headers

File Characteristics

Imports

user32

kernel32

comctl32

gdi32

Sections

.text Size: 184KB - Virtual size: 183KB

.rdata Size: 248KB - Virtual size: 246KB

.data Size: 116KB - Virtual size: 121KB

.rsrc Size: 88KB - Virtual size: 86KB

.text
Size: 184KB - Virtual size: 183KB

.rdata
Size: 248KB - Virtual size: 246KB

.data
Size: 116KB - Virtual size: 121KB

.rsrc
Size: 88KB - Virtual size: 86KB