2d41f39570b2b1e8abda12d9fc9547e2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2d41f39570b2b1e8abda12d9fc9547e2_JaffaCakes118
Size

229KB
MD5

2d41f39570b2b1e8abda12d9fc9547e2
SHA1

fa62b1b66d08da63491b079087b1dc53364e6164
SHA256

e4d0269ff3676a904a5cef0aae8735ec9e639e7a5bde841eebbbc190eacd0119
SHA512

6cfc8931ce1aa5fb0c1c079089fe530d0553f9609d340db36c9304c641c3b0b511115f812e3f22b14c8c45cfa2961077213b5ea50ccd87d38c8d52a26104fd23
SSDEEP

3072:OaON2iG6fND4nMrB3e4RqjiZIWBgcFp4mxkGSLnbQNgML6vo7mXSzR1:OBNnXIOgcPSvQ+OyQAG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d41f39570b2b1e8abda12d9fc9547e2_JaffaCakes118

Files

2d41f39570b2b1e8abda12d9fc9547e2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1db7c829ce9c442ecf4244cd5d8daf30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
CreateFontIndirectA
CreatePenIndirect
CreateDIBitmap
CreatePalette

kernel32

IsBadReadPtr
lstrlenA
GetProcAddress
ExitThread
LocalAlloc
GetModuleHandleA
DeleteFileA
GetEnvironmentStrings
LoadLibraryA
FreeResource
SetHandleCount
MulDiv
GetVersionExA
GetStringTypeW
VirtualAlloc
VirtualAllocEx
GetVersion
GlobalAlloc
ExitProcess
GetCommandLineA
MoveFileExA

user32

LoadBitmapA
GetDC
GetFocus
InvalidateRect
ReleaseCapture
CreateWindowExA
MessageBeep
GetScrollPos
ReleaseDC
ScrollWindow
GetWindowTextA
DeleteMenu
SetClassLongA
KillTimer
FrameRect
CheckMenuItem
GetCursor
IsDialogMessageA
RegisterClassA
MoveWindow
OpenClipboard
PostQuitMessage
FillRect
InsertMenuItemA
CharLowerA
DrawIconEx
EnumWindows
SetWindowsHookExA
GetForegroundWindow
CharUpperBuffA
GetKeyNameTextA
ShowScrollBar
ScreenToClient
GetScrollInfo
PostMessageA
SetRect
WaitMessage
ShowOwnedPopups
UnhookWindowsHookEx
SetWindowLongW
GetMenuState
GetClassLongA
PeekMessageW
DispatchMessageW
GetClipboardData
GetWindowLongA
GetSystemMetrics
EndPaint
IsRectEmpty
DrawIcon
PtInRect
DrawTextA
SetWindowPos
GetPropA
GetWindowDC
GetClassInfoA
GetWindow
DispatchMessageA
CallNextHookEx
GetClientRect
SetClipboardData
DestroyMenu
ChildWindowFromPoint
SetMenuItemInfoA
BeginPaint
SetForegroundWindow
GetMenuItemCount
IsWindow
EnableWindow
SetWindowTextA
CreateMenu
LoadStringA
CreateIcon
SetCursor
EnumThreadWindows
SetFocus
SetWindowPlacement
GetWindowLongW
GetDCEx
GetMenuStringA
RegisterClipboardFormatA
RemovePropA
SetActiveWindow
ClientToScreen
PeekMessageA
SendMessageW
EmptyClipboard
TranslateMDISysAccel
UnregisterClassA
GetWindowThreadProcessId
SetWindowLongA
CharLowerBuffA
AdjustWindowRectEx
GetParent
DrawFrameControl
MsgWaitForMultipleObjects
CharNextW
ShowWindow
LoadCursorA
GetMenu
GetMenuItemInfoA
CreatePopupMenu
InflateRect
CallWindowProcA
GetWindowRect
GetTopWindow
GetWindowPlacement
DestroyWindow
EqualRect
TrackPopupMenu
RedrawWindow
IsIconic
GetSystemMenu
SetScrollRange
RegisterWindowMessageA
GetClassNameA
WindowFromPoint
OffsetRect
IsZoomed
GetMenuItemID
GetIconInfo
DrawMenuBar
InsertMenuA
UpdateWindow
wsprintfA
SetPropA
MapWindowPoints
LoadKeyboardLayoutA
DestroyCursor
IsWindowUnicode
GetMessagePos
GetKeyboardLayout
OemToCharA
EnableMenuItem
GetCursorPos
IsWindowVisible
CloseClipboard
GetSysColor
GetCapture
GetKeyState
DestroyIcon
GetKeyboardState
SystemParametersInfoA
IntersectRect
GetLastActivePopup
FindWindowA
CharToOemA
GetSubMenu

shell32

SHGetFolderPathA
SHGetDesktopFolder
SHFileOperationA
SHGetSpecialFolderLocation
DragQueryFileA

version

VerInstallFileA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

CODE
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc6
Size: 1024B - Virtual size: 1006B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 1024B - Virtual size: 977B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1db7c829ce9c442ecf4244cd5d8daf30

Headers

File Characteristics

Imports

gdi32

kernel32

user32

shell32

version

Sections

CODE Size: 69KB - Virtual size: 68KB

DATA Size: 1024B - Virtual size: 840B

.rsrc6 Size: 1024B - Virtual size: 1006B

.rsrc2 Size: 5KB - Virtual size: 4KB

.rsrc8 Size: 512B - Virtual size: 252B

.rsrc4 Size: 1024B - Virtual size: 977B

.rsrc0 Size: 149KB - Virtual size: 148KB

.rsrc Size: 1024B - Virtual size: 976B

CODE
Size: 69KB - Virtual size: 68KB

DATA
Size: 1024B - Virtual size: 840B

.rsrc6
Size: 1024B - Virtual size: 1006B

.rsrc2
Size: 5KB - Virtual size: 4KB

.rsrc8
Size: 512B - Virtual size: 252B

.rsrc4
Size: 1024B - Virtual size: 977B

.rsrc0
Size: 149KB - Virtual size: 148KB

.rsrc
Size: 1024B - Virtual size: 976B