2dd98c0ef3244a9f0f3f2e6564b32d52_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2dd98c0ef3244a9f0f3f2e6564b32d52_JaffaCakes118
Size

645KB
MD5

2dd98c0ef3244a9f0f3f2e6564b32d52
SHA1

184630a5e3705ec9f597fcca0ce9111ad5d5669d
SHA256

7864f7cfbe0015002ead75a6b4843fda2c6c1181b21eaa21471dbae9495f6ec6
SHA512

f8720f0b3bc5d199f92912e7570f2e906c3871dd0d525e53092737a72021ebc15bc6f61095c8138a1b809180c9c1e416d5eda6c155254e418f3c67d3715a7d9c
SSDEEP

12288:T1Fny/Oh9czFstg83Nw93wSrzBL5qUKKdfAe/RBshlFVyeuVVhAXk:vn4FstBNk3wiVqUTfrBsh9yFVhek

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dd98c0ef3244a9f0f3f2e6564b32d52_JaffaCakes118

Files

2dd98c0ef3244a9f0f3f2e6564b32d52_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b2c2d962265604c0a1f7ea70aee0061a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DdeGetLastError
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA

kernel32

WideCharToMultiByte
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
RtlUnwind
HeapReAlloc
LoadLibraryA
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
GetOEMCP
GetCPInfo
GetCurrentProcessId
GetTickCount
CloseHandle
CreateDirectoryA
CreateFileA
CreateProcessA
DeleteFileA
FindResourceA
FormatMessageA
GetACP
GetCommandLineA
GetCurrentProcess
GetEnvironmentVariableA
GetExitCodeProcess
GetFileAttributesA
GetFileSize
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
SetFilePointer
SetLastError
SizeofResource
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WriteFile
MultiByteToWideChar
TlsGetValue
TlsSetValue
LocalAlloc
LocalFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetSystemTimeAsFileTime
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetProcAddress
TlsAlloc
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
ExitProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
QueryPerformanceCounter

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 603KB - Virtual size: 734KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2c2d962265604c0a1f7ea70aee0061a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 31KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 603KB - Virtual size: 734KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 603KB - Virtual size: 734KB

.rsrc
Size: 1KB - Virtual size: 1KB