c2a9de14ed5cec4f8e272562697e635b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c2a9de14ed5cec4f8e272562697e635b_JaffaCakes118
Size

296KB
MD5

c2a9de14ed5cec4f8e272562697e635b
SHA1

e3cc62a86c800587f92fd62173a2648e857a4134
SHA256

af01d257c1a31c86493bf98d44cae40566c716170120b8c448024b9912599f57
SHA512

59e061ef9f9e304c5571122f6405babe085a7dceba85c43ea7863b999b9d3b113bf556006b5cffb1ea029f46b0f5dd9772435b9fa4c5937dc4334e212e4188d0
SSDEEP

6144:C7MpBfNTTsKP0AluU1Fn9F+PpmpNE/QhDFghzKSZdPiXcnNvVjDGZ9:hpBJsK0kF9F+PUvEiDw1ZdiXyN0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c2a9de14ed5cec4f8e272562697e635b_JaffaCakes118

Files

c2a9de14ed5cec4f8e272562697e635b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b2b26064923fc65dc25c72179c4d3bd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
FindResourceW
FreeResource
GetLastError
SetEndOfFile
GetPrivateProfileStringW
WaitForSingleObject
VirtualAlloc
FileTimeToSystemTime
MoveFileW
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualProtect
SetThreadPriority
CreateWaitableTimerW
CreateFileW
SuspendThread
DeleteFileW
FreeLibrary
GlobalFree
CancelWaitableTimer
FindResourceExW
lstrcpyW
ReadFile
GlobalAlloc
WaitForMultipleObjects
GetModuleFileNameW
MultiByteToWideChar
GetTickCount
GetUserDefaultLangID
TerminateThread
CreateThread
MulDiv
GetCurrentThread
LoadResource
WideCharToMultiByte
GetFileSize
FindFirstFileW
ExitProcess
LockResource

user32

UpdateWindow
DefWindowProcW
SendMessageW
DestroyIcon
SetCursor
FillRect
GetDlgItem
GetWindowRect
GetWindowDC
DrawTextW
GetMessageW
GetSysColor
SetDlgItemTextW
LoadCursorW
ReleaseDC
TrackPopupMenu
ReleaseCapture
DestroyMenu
SetCapture
LoadImageW
LoadIconW
SetLayeredWindowAttributes
SendDlgItemMessageW
CreateWindowExW
IsWindow
InvalidateRect
RegisterClassExW
GetParent
LoadBitmapW
GetClassNameW
SetForegroundWindow
SetCursorPos
RegisterHotKey
GetWindowTextW
SystemParametersInfoW

gdi32

GetDeviceCaps
CreateCompatibleBitmap
CreateCompatibleDC
SetBkColor
CreateRoundRectRgn
GetStockObject
SetTextColor
SetMapMode
LineTo
StretchBlt
MoveToEx
CreatePen
GetMapMode
CreateBitmap
DPtoLP
CreateICW
SelectObject
CreateSolidBrush
GetObjectW
SetDIBits

advapi32

RegQueryValueExW
RegCreateKeyExW
GetUserNameW
RegOpenKeyExW
RegDeleteValueW

shell32

Shell_NotifyIconW

ole32

CoInitialize
CoInitializeEx

oleaut32

SysFreeString
OleLoadPicture

Sections

.text
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2b26064923fc65dc25c72179c4d3bd2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 264KB - Virtual size: 260KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 24KB - Virtual size: 20KB

.text
Size: 264KB - Virtual size: 260KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 24KB - Virtual size: 20KB