2f23601bf0c9ab0300b1cf1e34ac6251_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2f23601bf0c9ab0300b1cf1e34ac6251_JaffaCakes118
Size

383KB
MD5

2f23601bf0c9ab0300b1cf1e34ac6251
SHA1

70308e1853b8dce2b88553f5e13c9cdcc6f81475
SHA256

b07cc9a0922279e9ea6cd12b1bcb2a6eba66cc9852dcbfe1c8aeb458ef1d8164
SHA512

e804f0bdad6465dd5c54d032e1a3ad61c1667390ef2595a04a9dc354289ae739af5d1e298137004f14ed35ecf1cea40004bc839eda17b4d2f4a0cca3e094dced
SSDEEP

6144:DUOQKl7ZEAMwFjEXumaQ1S3HUbz4OPEw46Ko1LGE0qWoLc1YrAPlEGcRZrm/pDp:/QY7hDIXRmacY4lOqZb1YrSlpQm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f23601bf0c9ab0300b1cf1e34ac6251_JaffaCakes118

Files

2f23601bf0c9ab0300b1cf1e34ac6251_JaffaCakes118
.exe windows:4 windows x86 arch:x86

22f97a71a24ac0db94e6ae497e7cf59c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetDeviceCaps
CreateCompatibleBitmap
GetCharacterPlacementW
CombineRgn
SetWindowExtEx
SetBkMode
GetMetaFileA
ExtCreateRegion

wininet

SetUrlCacheEntryGroup
FindFirstUrlCacheEntryExW
InternetTimeToSystemTimeW
HttpSendRequestExA
HttpSendRequestW
InternetQueryOptionA
DeleteUrlCacheGroup
InternetQueryDataAvailable
GopherGetAttributeA
CommitUrlCacheEntryA
FtpOpenFileW
FtpFindFirstFileA
InternetShowSecurityInfoByURLA
InternetGetConnectedStateExW
InternetAlgIdToStringA
InternetWriteFileExA
ResumeSuspendedDownload
IsUrlCacheEntryExpiredA
FtpDeleteFileA
FindFirstUrlCacheContainerA
ShowSecurityInfo
FindNextUrlCacheEntryW
InternetShowSecurityInfoByURL
UnlockUrlCacheEntryStream
GetUrlCacheConfigInfoA

user32

CreateWindowExW
SendDlgItemMessageA

shell32

SHGetSettings
SHBrowseForFolder
SHBrowseForFolderA
SHGetDataFromIDListA
ExtractAssociatedIconExA
FindExecutableW

kernel32

GetCurrentThreadId
QueryPerformanceCounter
TlsGetValue
VirtualQuery
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStrings
InitializeCriticalSection
FreeEnvironmentStringsA
GetModuleHandleA
GetSystemTimeAsFileTime
ExitProcess
LeaveCriticalSection
GetProcAddress
HeapDestroy
GetModuleFileNameW
TlsFree
GetCurrentThread
HeapAlloc
HeapCreate
GetStartupInfoA
HeapFree
GetTickCount
InterlockedExchange
GetEnvironmentStringsW
DeleteCriticalSection
EnterCriticalSection
RtlUnwind
GlobalFlags
TlsSetValue
GetLastError
GetCommandLineW
UnhandledExceptionFilter
VirtualFree
GetModuleFileNameA
GetStartupInfoW
SetHandleCount
GetCurrentProcessId
HeapReAlloc
SetLastError
TerminateProcess
TlsAlloc
GetFileType
VirtualAlloc
LoadLibraryA
MultiByteToWideChar
GetVersion
GetStdHandle
GetProfileIntA
IsBadWritePtr
GetCurrentProcess
GetCommandLineA

comdlg32

FindTextW
ChooseColorW
FindTextA
ChooseColorA

Sections

.text
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 265KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22f97a71a24ac0db94e6ae497e7cf59c

Headers

File Characteristics

Imports

gdi32

wininet

user32

shell32

kernel32

comdlg32

Sections

.text Size: 109KB - Virtual size: 108KB

.data Size: 265KB - Virtual size: 272KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 109KB - Virtual size: 108KB

.data
Size: 265KB - Virtual size: 272KB

.rsrc
Size: 8KB - Virtual size: 7KB