a2691bcbb28596d26193900f0601b4bb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a2691bcbb28596d26193900f0601b4bb_JaffaCakes118
Size

1.4MB
MD5

a2691bcbb28596d26193900f0601b4bb
SHA1

722ba86af223151a217789f640f77efc92a94493
SHA256

0cdb97fbc1ab412bef60b2d6c22b7ebee9bd2db2a811b9d9dd41dd5636b91a72
SHA512

4c9ff63d875a1301854ab337f455204fd30d19c82c0c3e6798d45f915e36e879b6904e6d2295583f7c4e93ca209f7cab4c4c7fc6f200108f6e7cb861286d6ca2
SSDEEP

24576:v0kJsI2gAxWW0QRMuUIriwrEt26Lri3VgsGwpcCB:vEpWW06MuHuAEs6Lri3VguuCB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2691bcbb28596d26193900f0601b4bb_JaffaCakes118

Files

a2691bcbb28596d26193900f0601b4bb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f28edc1c24066dfd051745978e542b99

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateDirectoryA
ReadConsoleA
OpenFileMappingA
CopyFileA
GetCPInfo
CopyFileExW
CreateThread
GlobalFree
DeleteFileW
CopyFileW
FindAtomA
CopyFileExA
GetConsoleMode
DeleteAtom
ExitThread
FindFirstFileA

user32

DialogBoxParamW
GetDC
InsertMenuA
BlockInput
DrawTextA
CopyIcon
GetMenu
GetWindowTextLengthA
GetCursor
DialogBoxParamA
LoadCursorA
AppendMenuW
CopyImage
GetFocus
AppendMenuA
EndDialog
CopyRect

gdi32

CloseFigure
AddFontResourceExW
ClearBitmapAttributes
AbortPath
GetPixel
GetClipBox
DeleteDC
ExcludeClipRect
BitBlt
GetPixel
SetTextColor
CloseMetaFile
AddFontResourceA
GetDCOrgEx
CancelDC
CreateSolidBrush
RestoreDC
ClearBrushAttributes
ExtTextOutA
DeleteDC
GetPixel
GetClipBox
AddFontResourceW
AbortPath
AddFontResourceExW
GetCurrentPositionEx
GetPixel
ClearBitmapAttributes
AddFontResourceTracking
CloseMetaFile
CopyMetaFileA
ExcludeClipRect
AddFontResourceA
SetTextColor
CreateSolidBrush
CancelDC
GetBrushOrgEx
DeleteObject
GetClipBox
CancelDC
ClearBitmapAttributes
CreateSolidBrush
GetPixel
BitBlt
CloseFigure
AddFontResourceA
GetDCOrgEx
GetPixel
AddFontResourceExA
GetCurrentPositionEx
BeginPath
AddFontMemResourceEx
ExcludeClipRect
GetBrushOrgEx
CopyMetaFileA
GetBitmapBits

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 98B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f28edc1c24066dfd051745978e542b99

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 196KB - Virtual size: 195KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 1.2MB - Virtual size: 6.1MB

.tls Size: 4KB - Virtual size: 98B

.rdata Size: 4KB - Virtual size: 24B

.idata Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 1KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 196KB - Virtual size: 195KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 1.2MB - Virtual size: 6.1MB

.tls
Size: 4KB - Virtual size: 98B

.rdata
Size: 4KB - Virtual size: 24B

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 24KB - Virtual size: 24KB