2ba196299937d5483208ad57a5d77930_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ba196299937d5483208ad57a5d77930_JaffaCakes118
Size

123KB
MD5

2ba196299937d5483208ad57a5d77930
SHA1

241d76d782344b176deffb44ab9c47f8ebbe243c
SHA256

062b6a4437fb6854c3adc7289fc5baf56e4fa39dc348594c40608bed1a405cf9
SHA512

7185918326cf9c8c5716789d6c65bfdc947e0cb5c719901fd8e677778f8240224f4805a3420822e1739c101cd045266bdb4e07b98528121fc276b77c51a4426e
SSDEEP

3072:YP6nuMS0Vey2dVNrBNgpaVM5nTaQUKXtzpzm55:YkJV72dfr3gkVM5nWQUKXtzZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ba196299937d5483208ad57a5d77930_JaffaCakes118

Files

2ba196299937d5483208ad57a5d77930_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a5b643ea7d5e75f16c4a97a3e3c11a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
ReadFile
LoadLibraryA
RaiseException

gdi32

GetTextColor
GetBkColor
GetBkMode

user32

GetKeyboardLayoutNameA
EmptyClipboard
InflateRect
PeekMessageW
GetMenuItemCount
GetPropA
GetFocus
FrameRect
LoadIconA
ChildWindowFromPoint
GetWindowLongA
OemToCharA
DefMDIChildProcA
GetWindowTextA
GetCursor
GetDesktopWindow
WindowFromPoint
GetClassNameA
LoadBitmapA
CloseClipboard
GetForegroundWindow
DrawTextA
SetFocus
SetWindowLongW
GetKeyboardLayout
InsertMenuItemA
EnumThreadWindows
EnumWindows
GetKeyboardLayoutList
ActivateKeyboardLayout
wsprintfA
PostMessageA
FillRect
CharLowerBuffA
GetWindowPlacement
ReleaseDC
GetKeyboardState
CheckMenuItem
BeginPaint
IsIconic
DrawEdge
SetWindowsHookExA
UpdateWindow
GetWindow
EndPaint
MapWindowPoints
DrawAnimatedRects
MoveWindow
IsCharLowerA
GetDC
SendMessageA
ScrollWindow
CharLowerA
SetTimer
GetMenuState
CharNextW
DestroyCursor
RedrawWindow
RegisterClipboardFormatA
IsRectEmpty
EnableScrollBar
GetWindowThreadProcessId
SetActiveWindow
GetScrollPos
GetDlgItem
MapVirtualKeyA
DeleteMenu
PostQuitMessage
SetParent
IsWindowUnicode
ClientToScreen
SetWindowTextA
GetWindowRect
SetMenu
GetParent
CharUpperA
LoadStringA
CreateWindowExA
WaitMessage
EnumChildWindows
SendMessageW
CallNextHookEx
LoadKeyboardLayoutA
IsDialogMessageA
GetClassInfoA
MessageBoxA
EqualRect
SetCursor
DestroyWindow
RemoveMenu
GetWindowLongW
FindWindowA
GetMenu
EndDialog
SetCapture
TranslateMDISysAccel
GetCapture
CallWindowProcA
SetRect
ScreenToClient
InsertMenuA
RemovePropA
CreatePopupMenu
GetSystemMenu
GetMenuItemID
GetScrollRange
GetCursorPos
EnableWindow
ShowOwnedPopups
SetScrollRange
TranslateMessage
CharToOemA
CharUpperBuffA

Exports

Exports

_pSw64RhSX6
_hiVLWX6@20
4c6fxweQgeBJsu@16
OqQS93GEl
rQSWkYgX4NxyKw@8
_uVDpAf
_t1I14VgQ@12
ngxvg08i@20
5lpjU3@24
_9GwBamt
90L0lNbv0F0U
_X6x8J7jzy
yVJUr@4

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a5b643ea7d5e75f16c4a97a3e3c11a0

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 120KB

.data Size: 106KB - Virtual size: 106KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 120KB

.data
Size: 106KB - Virtual size: 106KB

.rsrc
Size: 2KB - Virtual size: 1KB