380e46f29526ad1d0a46e02d5c8412f2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

380e46f29526ad1d0a46e02d5c8412f2_JaffaCakes118
Size

212KB
MD5

380e46f29526ad1d0a46e02d5c8412f2
SHA1

a403ae926225817a3fb53fd8a8513517c326c0d4
SHA256

8dbe4bd0006e5c37ee98d8d1a761cd9a22bc3fd97e5c9f8ba2b9eabdc8802980
SHA512

8b70958425eee30ac5f85119c281f81ca23fb5d1605009ab7ea1b355e363865099c6482c3d9f74fd4a853d4bf578bcce3d3d326206b8267a6ad20431a5198e95
SSDEEP

6144:nidpFYzp/WWlPsPnlSYBC8b5GkGxKMCoXHdXhwy:i14kWlPsvIYBjGKoXHdRwy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
380e46f29526ad1d0a46e02d5c8412f2_JaffaCakes118

Files

380e46f29526ad1d0a46e02d5c8412f2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bf3c0fd1eec0bb8be1c5951da3bda82f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
FindFirstFileA
FlushFileBuffers
GetCurrentProcess
GetFileSize
GetLocaleInfoW
GetTickCount
GetVersion
GlobalLock
HeapFree
HeapSize
InterlockedDecrement
IsDBCSLeadByte
LCMapStringW
LoadLibraryExA
LoadLibraryW
MoveFileA
RtlUnwind
SetEnvironmentVariableA
SetHandleCount
SetLastError
TerminateProcess
WaitForSingleObject
WriteFile

shell32

CommandLineToArgvW
DragAcceptFiles
DragFinish
ExtractIconExA
FindExecutableW
SHAppBarMessage
SHBrowseForFolderW
SHCreateDirectoryExA
SHFileOperationA
SHGetFolderLocation
SHGetPathFromIDListW
SHGetSettings
SHGetSpecialFolderLocation
ShellExecuteA
Shell_NotifyIconA

user32

DeleteMenu
DestroyCursor
DrawIconEx
EnableWindow
EnumWindows
FillRect
FindWindowA
FrameRect
GetDC
GetDesktopWindow
GetForegroundWindow
GetKeyState
GetScrollRange
GetSysColorBrush
GetWindowLongA
GetWindowThreadProcessId
InflateRect
IsDialogMessageA
IsZoomed
LoadCursorA
MessageBoxA
SetScrollPos
SetScrollRange
SetWindowPlacement
UnhookWindowsHookEx
wsprintfA

gdi32

BeginPath
CreateCompatibleDC
CreateFontA
CreateRectRgn
EndPath
EnumFontsA
EnumMetaFile
Escape
ExtEscape
GetPixel
GetStockObject
GetTextExtentPoint32W
GetWinMetaFileBits
LPtoDP
LineTo
Polygon
PolylineTo
PtInRegion
RealizePalette
Rectangle
RestoreDC
ScaleViewportExtEx
SetPixel
SetWinMetaFileBits
SetWindowExtEx

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf3c0fd1eec0bb8be1c5951da3bda82f

Headers

File Characteristics

Imports

kernel32

shell32

user32

gdi32

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 98KB - Virtual size: 98KB

.rsrc Size: 22KB - Virtual size: 140KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 98KB - Virtual size: 98KB

.rsrc
Size: 22KB - Virtual size: 140KB