2cea8373644a6ac30c8d96fb1ce47915_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2cea8373644a6ac30c8d96fb1ce47915_JaffaCakes118
Size

43KB
MD5

2cea8373644a6ac30c8d96fb1ce47915
SHA1

21e86aafc50e42d960967be02887bead48745af2
SHA256

ee34edc713d9317868a5e180f6769e85c8728652f049ee4ff274006e51624cb4
SHA512

9fae6dac6aa5b3f19a862b40ae9e9ce6411b953df05d1f77230f3ad0e092bb002aaef26e232a9c8645207b07fc6a7a79dc02edd28feac476eebaa138012770b2
SSDEEP

384:6XkWZqoCY1zCH3HPAjUIPhPsRo+QV2iYxQFNuja98/67UMqYGodDLc+LckFTD0ds:g5srY12XvDI5Py02Dq98/lM0op/zTF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cea8373644a6ac30c8d96fb1ce47915_JaffaCakes118

Files

2cea8373644a6ac30c8d96fb1ce47915_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f9de87a50634422949ea5fe6ae03eb54

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
LoadLibraryA
FreeLibrary
GetModuleHandleA
HeapAlloc
Sleep
EnterCriticalSection
GetModuleHandleA
FreeLibrary
lstrcmpiW
GetModuleHandleA
GetProcAddress
DisableThreadLibraryCalls
LoadLibraryW
CloseHandle
GetCurrentThreadId
LoadLibraryA
CreateThread
LoadLibraryW
CloseHandle
GetCurrentProcessId
GetModuleFileNameA
HeapDestroy
GetModuleFileNameW
ReadFile
GetCurrentThreadId
InterlockedCompareExchange
Sleep
lstrcmpiW
GetProcAddress
lstrlenA
Sleep
CreateFileW
SetLastError
InterlockedDecrement
InitializeCriticalSection
LocalAlloc
GetCurrentThreadId
GetTickCount
SetLastError
CreateThread
CloseHandle
LeaveCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
ReadFile
InterlockedDecrement
CreateThread
GetSystemTimeAsFileTime
GetTickCount
InterlockedCompareExchange
SetLastError
VirtualAlloc

user32

LoadIconW
GetSysColor
SetWindowTextW
GetDlgItem
CharNextW
SetTimer
ReleaseDC
GetWindowLongW
DispatchMessageW
LoadStringW
GetSystemMetrics
SetWindowPos
LoadStringW
EnableWindow
DispatchMessageW
CharNextW
BeginPaint
GetSystemMetrics
GetDesktopWindow
InvalidateRect
DestroyWindow
SetForegroundWindow
PostMessageW
GetParent
DestroyWindow
BeginPaint
CharNextW
IsDlgButtonChecked
EndDialog
GetDlgItem
CreateWindowExW
IsDlgButtonChecked
TranslateMessage
GetWindowRect
CreateWindowExW
InvalidateRect
PeekMessageW
PostQuitMessage
SetFocus
GetFocus
GetDesktopWindow
GetDC
SendMessageW
PeekMessageW
GetSysColor
SetWindowLongW
DispatchMessageW
MessageBoxW
ReleaseDC
LoadIconW
InvalidateRect

Sections

.text
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9de87a50634422949ea5fe6ae03eb54

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 37KB - Virtual size: 40KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 37KB - Virtual size: 40KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB