2b732a9e3ac8734e7866a6bbd2462eb0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b732a9e3ac8734e7866a6bbd2462eb0_JaffaCakes118
Size

447KB
MD5

2b732a9e3ac8734e7866a6bbd2462eb0
SHA1

70560acb454231d3d55ac30d1eb829847d684d18
SHA256

cd40bd98a0d48cf66e0919cb08f36977d9eade499ebac5bc9bb2182f34c381b8
SHA512

6dea4915030ecae0b6b19e67b2a8eb987709fca5a338b30a02bcf4306489f6af5985ee3b2fbd9e7f1402d50b8366feda912b147bf18cf4625287c82ad319be1d
SSDEEP

12288:+FkKs0P6UvyaNq7iz+Fgae+FqZTA392ZR:+OKsANjaewqZbR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b732a9e3ac8734e7866a6bbd2462eb0_JaffaCakes118

Files

2b732a9e3ac8734e7866a6bbd2462eb0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c92235f6e36e45dafd600f77901acfa4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExW
FlushInstructionCache
GetLocaleInfoW
lstrcpynA
GetTickCount
BindIoCompletionCallback
GetStringTypeExA
FoldStringA
GlobalUnfix
SizeofResource
GetSystemWindowsDirectoryA
CreateMutexA
EnumResourceNamesW
GetCalendarInfoA
GetEnvironmentVariableW
lstrcmpiA
lstrcpyW
WriteFileGather
GetFileTime
GetProcessVersion
EnumResourceNamesA
IsBadHugeWritePtr
SetCurrentDirectoryW

ole32

CoUninitialize
CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoCreateInstance

user32

TranslateAcceleratorW
GetCursorPos
DrawIconEx
MessageBeep
CharUpperW
EnumWindows
DrawFocusRect
GetWindowThreadProcessId
RegisterClassW
SetWindowTextW
GetSubMenu
FindWindowW
IsIconic
GetDC
PostQuitMessage
SendDlgItemMessageW
GetKeyboardLayout
SetActiveWindow
CreateWindowExW
SetForegroundWindow
ShowWindow
EnableWindow
InvalidateRect
GetWindowPlacement
GetClientRect
SendMessageW
ReleaseDC
GetDlgItem
GetFocus
MessageBoxW
RegisterClassExW
DestroyWindow
SetScrollPos
IsClipboardFormatAvailable
GetDesktopWindow
CreateDialogParamW
MoveWindow
DispatchMessageW
SetCursor
SetWindowLongW
GetMenuState
EnableMenuItem
GetSysColor
GetSystemMenu
SetWindowPlacement
ScreenToClient
LoadIconW
GetMenu
SetDlgItemTextW
EndDialog
LoadImageW
TranslateMessage
PeekMessageW
GetForegroundWindow
ChildWindowFromPoint
UpdateWindow
LoadStringW
DialogBoxParamW
wsprintfW
GetMessageW
SetFocus
GetThreadDesktop
GetWindowTextW
CharLowerW
FreeDDElParam

advapi32

RegEnumKeyW
RegSetValueExW
RegQueryValueExA
RegQueryValueExW

shlwapi

StrStrIW
StrCmpW
StrToIntW

comdlg32

GetOpenFileNameW
GetSaveFileNameW

comctl32

ImageList_Create
ImageList_ReplaceIcon

Sections

.text
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 379B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c92235f6e36e45dafd600f77901acfa4

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

shlwapi

comdlg32

comctl32

Sections

.text Size: 313KB - Virtual size: 313KB

.data Size: 126KB - Virtual size: 125KB

.data Size: 512B - Virtual size: 379B

.rdata Size: 3KB - Virtual size: 2KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 313KB - Virtual size: 313KB

.data
Size: 126KB - Virtual size: 125KB

.data
Size: 512B - Virtual size: 379B

.rdata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB