2d28ef5623ad98a01c4c7fdcd025d3f8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2d28ef5623ad98a01c4c7fdcd025d3f8_JaffaCakes118
Size

496KB
MD5

2d28ef5623ad98a01c4c7fdcd025d3f8
SHA1

c0552677ad72422c59087c80b20e9e8596456af4
SHA256

9c93ffc34c7b93f6ff0b7a7ba94cb1b58460adfb701f8394c9071843e96ee2e0
SHA512

e68ae25b55633fb6b11163b841a30c07203e0322b0a2ab5fd607e5c6a0bcaecfda25c2b3d005f4630c4b353f8b06efc5826e1b1af03f843798a7a42102270ad5
SSDEEP

6144:ECVaJr05ntz38KNNhkvKouXQHiaiPONSK0jWl5u:LVxbkuQHiaiONSK0jW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d28ef5623ad98a01c4c7fdcd025d3f8_JaffaCakes118

Files

2d28ef5623ad98a01c4c7fdcd025d3f8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

19f7516e44eb208f8142f9625cbf7e49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
GetClassInfoExA
ReleaseDC
wsprintfA
MessageBoxA
SetMenu
RemoveMenu
DeleteMenu
InsertMenuA
CreateMenu
GetMenuItemID
SetMenuItemInfoA
EnableMenuItem
CheckMenuItem
GetMenuState
TrackPopupMenu
AppendMenuA
CreatePopupMenu
DestroyMenu
GetCursorPos
LoadBitmapA
LoadImageA
SetWindowPos
SetWindowRgn
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
EqualRect
IntersectRect
SetWindowLongA
GetWindowLongA
PostQuitMessage
CreateWindowExA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
IsWindow
EnableWindow
UpdateWindow
ShowWindow
IsWindowVisible
GetWindowRect
CallWindowProcA
FillRect
GetSysColor
DefWindowProcA
TrackMouseEvent
SendMessageA
GetParent
InvalidateRect
EndPaint
BeginPaint
MoveWindow
LoadCursorA
LoadIconA
GetDC

kernel32

GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetLastError
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetOEMCP
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
GetVersion
GetCommandLineA
lstrcpyn
GetCurrentProcess
ReadProcessMemory
GetModuleHandleA
lstrlenA
lstrcpynA
LocalSize
RtlMoveMemory
LocalAlloc
RtlFillMemory
LocalFree
GetProcessHeap
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
VirtualAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
GetStartupInfoA
WideCharToMultiByte

gdi32

CreateFontA
CombineRgn
GetPixel
CreateRectRgn
SetTextColor
TextOutA
SetBkColor
DeleteObject
CreatePatternBrush
CreateSolidBrush
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
GetObjectA
CreateDIBitmap
StretchBlt

oleaut32

SysAllocStringByteLen

msimg32

TransparentBlt

comctl32

ImageList_Create
ImageList_Add
ImageList_AddIcon
ImageList_SetBkColor

shlwapi

StrDupA

msvfw32

GetOpenFileNamePreview
GetSaveFileNamePreviewA

Sections

.text
Size: 144KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 340KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

19f7516e44eb208f8142f9625cbf7e49

Headers

File Characteristics

Imports

user32

kernel32

gdi32

oleaut32

msimg32

comctl32

shlwapi

msvfw32

Sections

.text Size: 144KB - Virtual size: 141KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 340KB - Virtual size: 338KB

.text
Size: 144KB - Virtual size: 141KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 340KB - Virtual size: 338KB