2cd4ecfd70836cd5b8d3a85b2ac76d46_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2cd4ecfd70836cd5b8d3a85b2ac76d46_JaffaCakes118
Size

357KB
MD5

2cd4ecfd70836cd5b8d3a85b2ac76d46
SHA1

1fce26eccd005c97529d14df08fb88b7e06e1458
SHA256

4df0847e06eb6e02297bbdac1f7f6023a2ee8d82b9dade4244aa7661ae2ce3a4
SHA512

f3baf3da17f8b52f9ea89ea8b183e874e1ee7f2d643f7770d873ea85edf90d239d18ccc854f6cb4c69aa8ab0d00a184246fefeb11f2e5f24b947e758f22d9397
SSDEEP

6144:DQn1FLEl7N7S9PM0RFAHcZuNaeFatFz6+V2oMdVedWbx6uGi+CmIKtZfgpP:DQn1FLMAUciHKeFc4+V2oceYbDGHT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cd4ecfd70836cd5b8d3a85b2ac76d46_JaffaCakes118

Files

2cd4ecfd70836cd5b8d3a85b2ac76d46_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8f17d7ea38b724a2f19602f20b453735

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageW
GetDlgItem
GetWindowRect
GetMessageW
DestroyWindow
GetMessageW
GetDlgItem
CreateWindowExW
ShowWindow
ReleaseDC
PostMessageW
PostMessageW
GetSystemMetrics
GetSystemMetrics
GetWindowRect
GetWindowRect
GetWindowRect
PostMessageW
EndPaint
ShowWindow
GetWindowRect
DefWindowProcW
CreateWindowExW
GetDC
PostMessageW
ReleaseDC
CreateWindowExW
ReleaseDC
CreateWindowExW
PostMessageW
GetDC
ShowWindow
CreateWindowExW
GetMessageW
SetTimer
GetSystemMetrics
GetSystemMetrics
LoadIconW
ShowWindow
ShowWindow
LoadIconW
LoadIconW
GetSystemMetrics
GetDC
DefWindowProcW
ShowWindow
GetDC
ReleaseDC
SendMessageW
PostMessageW
DefWindowProcW
GetSystemMetrics
ReleaseDC
GetMessageW
LoadIconW
GetWindowRect
LoadIconW
GetDlgItem
GetDlgItem
SetTimer
ReleaseDC
ShowWindow
PostMessageW
DefWindowProcW
DestroyWindow
ShowWindow
GetSystemMetrics
GetDC
ShowWindow
SetTimer
DestroyWindow
DefWindowProcW
ReleaseDC
SetTimer
SetTimer
GetDlgItem
GetMessageW
CreateWindowExW
GetWindowRect
ShowWindow
LoadIconW
GetSystemMetrics
DefWindowProcW
SetTimer
SendMessageW
CreateWindowExW
GetWindowRect
ShowWindow
CreateWindowExW
GetDC
ReleaseDC
PostMessageW
DestroyWindow
SetTimer
LoadIconW
SetTimer
GetSystemMetrics
CreateWindowExW
GetMessageW
GetDlgItem

kernel32

VirtualFree
GetCurrentThreadId
GetCurrentThreadId
FormatMessageW
GetModuleHandleW
WaitForSingleObject
QueryPerformanceCounter
GetCurrentProcessId
LocalAlloc
SetEvent
WaitForSingleObject
SetEvent
WaitForSingleObject
GetModuleFileNameA
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetTickCount
LocalAlloc
GetCurrentThreadId
SleepEx
VirtualFree
QueryPerformanceCounter
GetCommandLineW
GetACP
SetUnhandledExceptionFilter
MultiByteToWideChar
LocalFree
VirtualFree
FormatMessageW
LocalFree
GetModuleHandleA
LocalAlloc
GetProcessHeap
WaitForSingleObject
GetCurrentThreadId
LocalAlloc
LocalFree
GetCurrentProcess
GetModuleHandleA
WaitForSingleObject
GetModuleHandleA
FormatMessageW
SetEvent
GetCommandLineA
GetCommandLineA
LocalFree
GetTickCount
GetCommandLineA
QueryPerformanceCounter
GetCurrentProcessId
GetProcessHeap
QueryPerformanceCounter
GetModuleFileNameA
LocalAlloc
GetProcessHeap
GetModuleFileNameA
FormatMessageW
GetProcessHeap
FormatMessageW
LocalAlloc
QueryPerformanceCounter
GetTickCount
GetTickCount
GetCurrentProcess
GetCommandLineW
GetTickCount
GetModuleHandleW
VirtualFree
LocalFree
GetCommandLineA
GetModuleHandleA
QueryPerformanceCounter
MultiByteToWideChar
GetCurrentProcess
SetUnhandledExceptionFilter
GetCurrentProcessId
FormatMessageW
GetModuleHandleW
GetACP
GetCurrentProcessId
LocalFree
VirtualFree
GetModuleHandleA
SetEvent

gdi32

SetBkMode
CreateCompatibleBitmap
BitBlt
BitBlt
DeleteObject
GetStockObject
GetStockObject
CreateCompatibleDC
DeleteObject
GetObjectW
GetDeviceCaps
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
MoveToEx
LineTo
GetObjectW
GetObjectW
CreateCompatibleBitmap
GetTextMetricsW
GetDeviceCaps
SelectObject
CreateCompatibleBitmap
SetBkMode
CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap
MoveToEx
MoveToEx
MoveToEx
SetTextColor
GetDeviceCaps
SetBkMode
DeleteObject
SetTextColor
CreateCompatibleDC
CreateCompatibleDC
GetStockObject
GetDeviceCaps
SetTextColor
SetBkMode
CreateCompatibleDC
LineTo
LineTo
GetObjectW
BitBlt
DeleteObject
GetTextMetricsW
MoveToEx
DeleteDC
PatBlt
DeleteObject
GetDeviceCaps
GetStockObject
SelectObject
BitBlt
GetStockObject
CreateCompatibleDC
DeleteDC
GetDeviceCaps
SetTextColor
GetTextMetricsW
SetTextColor
SetBkMode
GetObjectW
GetDeviceCaps
GetDeviceCaps
DeleteObject
MoveToEx
SetBkMode
DeleteDC
LineTo
PatBlt
CreateCompatibleDC
SelectObject
BitBlt
PatBlt
GetStockObject
GetDeviceCaps
BitBlt
CreateCompatibleDC
SetBkMode
GetObjectW
SelectObject
GetTextMetricsW
SetTextColor
GetObjectW
CreateCompatibleBitmap
DeleteObject
SetTextColor
LineTo
GetDeviceCaps
DeleteObject
SetTextColor

ntdll

RtlAllocateHeap

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 956KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 327KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f17d7ea38b724a2f19602f20b453735

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ntdll

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 7KB - Virtual size: 956KB

.data Size: 327KB - Virtual size: 328KB

.pdata Size: 512B - Virtual size: 4KB

.pdata Size: 512B - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 7KB - Virtual size: 956KB

.data
Size: 327KB - Virtual size: 328KB

.pdata
Size: 512B - Virtual size: 4KB

.pdata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB