2be124a415b6ad5c4c33e9fccfa4ca8b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2be124a415b6ad5c4c33e9fccfa4ca8b_JaffaCakes118
Size

149KB
MD5

2be124a415b6ad5c4c33e9fccfa4ca8b
SHA1

e1c29f571ab7ec6ab4cd4041b2e6884512552e2d
SHA256

e7e0af974988ee118db623302aa5824bf5a88fb671b75f29f248cf1d6030927c
SHA512

3c821cabad82a41d8f9105745204e61732cef10bf96b4b732dfc846450017cdcb1ab2a34872af85284c7afa3b91ac8ca72d3ee6337caabfb282cec78487822e7
SSDEEP

3072:pIUjWSpvwEsMdtGlxc9HTG8IN0+fFzyYxENnAS1UGseEOMk/sfo6X:GUyEw/ET+9NrSNASDAivC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2be124a415b6ad5c4c33e9fccfa4ca8b_JaffaCakes118

Files

2be124a415b6ad5c4c33e9fccfa4ca8b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

48e6bac28303c7c432961c6838fbf078

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
GetCommandLineA
GetLastError
ResumeThread
IsDebuggerPresent
FindResourceA
VirtualAlloc
FreeEnvironmentStringsW
GetFileAttributesW
OpenEventW
SetFileAttributesW
GetExitCodeThread
GetCurrentThreadId
GetEnvironmentStringsW
GetProcessHeap
ExitProcess
IsBadWritePtr
GetThreadLocale
SetLastError
Sleep
GetCurrentProcess
HeapAlloc
GetVersion
GetACP
QueryPerformanceCounter
GetExitCodeProcess
GetModuleHandleW
OpenMutexA
GetDriveTypeA
GetDriveTypeW
CloseHandle
GetConsoleMode
IsBadReadPtr

msvcrt

_itow
__getmainargs
fwrite
setlocale
atol
qsort
__initenv
fclose
_snprintf
_onexit
_acmdln
_unlock
calloc
_iob
swscanf
sscanf
memset
_XcptFilter
_wfopen
iswdigit
??2@YAPAXI@Z
_ftol
strncpy
_CxxThrowException
malloc
wcstombs
_fileno
strlen
towupper
_strnicmp
realloc
__set_app_type
_wsplitpath
_ultoa
?terminate@@YAXXZ
rand
iswspace

user32

GetActiveWindow
DrawTextA
TrackPopupMenu
RegisterWindowMessageW
GetSysColor
GetWindowTextW
MessageBoxW
RegisterClassExA
SetForegroundWindow
GetSubMenu
FindWindowA
MoveWindow
GetDlgCtrlID
EnableWindow
SetDlgItemTextW
EnumChildWindows
MapDialogRect
EndDialog
DrawIcon
CreateDialogParamW
GetWindowRect
TranslateMessage
LoadIconW
DrawFocusRect
SetCursor
LoadIconA
CallNextHookEx

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 512B - Virtual size: 446B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbss
Size: 512B - Virtual size: 122B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 419B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

48e6bac28303c7c432961c6838fbf078

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 135KB - Virtual size: 134KB

.bss Size: 512B - Virtual size: 446B

DATA Size: 512B - Virtual size: 127KB

.bss Size: 512B - Virtual size: 160B

.tls Size: 512B - Virtual size: 68B

.textbss Size: 512B - Virtual size: 122B

.bss Size: 512B - Virtual size: 37KB

DATA Size: 512B - Virtual size: 419B

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 135KB - Virtual size: 134KB

.bss
Size: 512B - Virtual size: 446B

DATA
Size: 512B - Virtual size: 127KB

.bss
Size: 512B - Virtual size: 160B

.tls
Size: 512B - Virtual size: 68B

.textbss
Size: 512B - Virtual size: 122B

.bss
Size: 512B - Virtual size: 37KB

DATA
Size: 512B - Virtual size: 419B

.rsrc
Size: 9KB - Virtual size: 9KB