2e6ac174f1a619adc4040232b1df9da2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2e6ac174f1a619adc4040232b1df9da2_JaffaCakes118
Size

87KB
MD5

2e6ac174f1a619adc4040232b1df9da2
SHA1

1ce4b5270b45294db4c2b5a21ee5c32fdf08d161
SHA256

ebacf2d159cdd156ec1561c0fcae1319994393f180e24bcc4b856d1213eac817
SHA512

d2973deb5e38e7126e3b078ded26711e0ca4399cf29d6904d9c23c299721035ae70744d5ae46237709937ef195b8ca3680baf3869b178663692dc0b778c53fe3
SSDEEP

1536:Nnjg2pSI8OUYg0uUZWCKzyBFSD5qQ98UjLP3r5rhq8k:zL8OUF0XvKkFSD5qK8OPb5ri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e6ac174f1a619adc4040232b1df9da2_JaffaCakes118

Files

2e6ac174f1a619adc4040232b1df9da2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1d26058691bcea7890b27afcd7f388df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathCompactPathA
StrCmpNIW
StrToIntExA
StrRStrIA
StrCpyNW

kernel32

GetCommConfig
GetLogicalDriveStringsA
MoveFileA
FileTimeToDosDateTime
GetCommModemStatus
ClearCommError
LoadLibraryExW
GetDevicePowerState
SetTapePosition
GlobalFree
QueryMemoryResourceNotification
AreFileApisANSI
GetModuleHandleA
CreateSemaphoreW
GetMailslotInfo
lstrcmpA
SetWaitableTimer
QueryInformationJobObject

user32

SetWinEventHook
SetPropA
WaitMessage
GetWindowTextLengthA
EnumDesktopsW
GetMouseMovePointsEx
ScreenToClient
UnregisterClassA
GetMenuStringA
GetMenuContextHelpId
DrawMenuBar
OpenClipboard
SystemParametersInfoA
SetWindowTextA
LoadImageA
GetDlgCtrlID
CheckMenuItem
LoadCursorFromFileA
UnregisterDeviceNotification

gdi32

PolylineTo
PlayEnhMetaFile
GetEnhMetaFileA
SelectClipPath
GetRasterizerCaps
CreateEllipticRgnIndirect
GetTextExtentExPointA
CopyEnhMetaFileW
CreatePenIndirect
GetDeviceCaps
SelectPalette

Exports

Exports

?_GetCaretPos@@YGPAXPAKPAEPAI@Z

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.icode
Size: 1024B - Virtual size: 643B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.m_data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c_data
Size: 512B - Virtual size: 158B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.n_data
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 818B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d26058691bcea7890b27afcd7f388df

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 10KB

.icode Size: 1024B - Virtual size: 643B

.data Size: 512B - Virtual size: 636B

.m_data Size: 2KB - Virtual size: 2KB

.c_data Size: 512B - Virtual size: 158B

.n_data Size: 1024B - Virtual size: 648B

.rsrc Size: 68KB - Virtual size: 68KB

.reloc Size: 1024B - Virtual size: 818B

.text
Size: 11KB - Virtual size: 10KB

.icode
Size: 1024B - Virtual size: 643B

.data
Size: 512B - Virtual size: 636B

.m_data
Size: 2KB - Virtual size: 2KB

.c_data
Size: 512B - Virtual size: 158B

.n_data
Size: 1024B - Virtual size: 648B

.rsrc
Size: 68KB - Virtual size: 68KB

.reloc
Size: 1024B - Virtual size: 818B