dbde933c2aa92b9ad7afdc85b350c3e8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dbde933c2aa92b9ad7afdc85b350c3e8_JaffaCakes118
Size

1.4MB
MD5

dbde933c2aa92b9ad7afdc85b350c3e8
SHA1

3bc3a9f9966745b7dba82a3a6c2bde97584d7488
SHA256

2f79ad258cc28f6b6afaaf807b04e082e8320be228110b7c4f120a9c1c394a1d
SHA512

725c93e96d9b59bff576a35742ef020d34d0768582f090d536aa3af923c053b077184f4dd8883d00fb89592d058c8359a5864a6642117737767fd0416b42af9f
SSDEEP

24576:sDEfak0dTZ4IJiekS5s0ivwBCQkerkuyZoARBPsZz7mTEG:szt/JiKmwFvkH3xsUTEG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbde933c2aa92b9ad7afdc85b350c3e8_JaffaCakes118

Files

dbde933c2aa92b9ad7afdc85b350c3e8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

20a2965b9154eb379b3eebfa6092cd73

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetScrollInfo
MapWindowPoints
MessageBoxW
SetScrollPos
GetMenuItemInfoW
InsertMenuW
CreatePopupMenu
DrawMenuBar
CharNextW
RegisterClipboardFormatW
DestroyWindow
IsWindow
RegisterClassExW
ExitWindowsEx
DrawFrameControl
DrawEdge

kernel32

GetProcAddress
VirtualAlloc
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCurrentThreadId
GetLastError
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
WriteFile
SetFilePointer
CloseHandle
GetLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
OutputDebugStringW
GetSystemDirectoryW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
WideCharToMultiByte
GetEnvironmentStrings
SetHandleCount
GetStdHandle
GetFileType
InterlockedIncrement
TlsAlloc
SetLastError
TlsGetValue
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
TlsSetValue

comdlg32

ChooseFontW
FindTextW
GetFileTitleW
GetOpenFileNameW

uxtheme

GetThemeColor
IsThemeActive
DrawThemeParentBackground
OpenThemeData

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 6.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ar2t28
Size: 967KB - Virtual size: 966KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 367KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20a2965b9154eb379b3eebfa6092cd73

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

uxtheme

Sections

.text Size: 39KB - Virtual size: 38KB

.data Size: 12KB - Virtual size: 6.8MB

.idata Size: 2KB - Virtual size: 2KB

.ar2t28 Size: 967KB - Virtual size: 966KB

.rsrc Size: 367KB - Virtual size: 366KB

.text
Size: 39KB - Virtual size: 38KB

.data
Size: 12KB - Virtual size: 6.8MB

.idata
Size: 2KB - Virtual size: 2KB

.ar2t28
Size: 967KB - Virtual size: 966KB

.rsrc
Size: 367KB - Virtual size: 366KB