2e3da04ffb890533d7e506020f74f6df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2e3da04ffb890533d7e506020f74f6df_JaffaCakes118
Size

241KB
MD5

2e3da04ffb890533d7e506020f74f6df
SHA1

9fb703ac83e4395a83ef8087817ec3487b500f5d
SHA256

b5c9f280f39ed6bee73c6620fef010f473964aa3911c5fddaf4fdcef869b372c
SHA512

2e715eb7a6a9d9312804e01a5d2ecd5b924f283221cc04db2efe7300366ba7e9ddf3246007737222df9e670fc6062e91825904f3ca640a8f27663c361f4208f1
SSDEEP

3072:aE46lDiTCeDwA+3gHEeq5LU77J5W3qVGb9D5cId91pLeosTcKdSdVcozBuRVnlP+:zBOTP+QHf+25Wa2zSo8nggqAnlPhVWT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e3da04ffb890533d7e506020f74f6df_JaffaCakes118

Files

2e3da04ffb890533d7e506020f74f6df_JaffaCakes118
.exe windows:5 windows x86 arch:x86

54ce8e3042778c98ee6a67be9fb716a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontsW
CreateCompatibleDC
GetBitmapBits
EnumFontFamiliesExW
CreatePenIndirect
SetLayout
StretchDIBits
DeleteDC
SetAbortProc
CreateRoundRectRgn
GetCharWidth32W
MoveToEx
OffsetViewportOrgEx
BeginPath
RectVisible
SetViewportExtEx

kernel32

ConnectNamedPipe
HeapSize
GetThreadPriority
InitializeCriticalSection
SetEvent
FindResourceExA
HeapAlloc
GetComputerNameA
GetDateFormatW
SetCommBreak
lstrlenW
CreateFileMappingA
GetCommConfig
GetModuleFileNameA
ReleaseSemaphore
SearchPathW
LocalSize

user32

LoadCursorA
GetClientRect
GetMessageA
SetClassLongW
GetClassInfoExA
SendDlgItemMessageA
MessageBoxExW
WaitForInputIdle
SetDlgItemInt
GetDC
DefFrameProcW
GetSysColorBrush
OffsetRect
DeleteMenu
GetDlgCtrlID
SetForegroundWindow
CreateCaret
GetFocus
GetMenuItemID
GetMonitorInfoW
DestroyAcceleratorTable
GetDlgItem
LoadAcceleratorsW
DrawEdge
CreateMenu
AppendMenuA
IsCharAlphaW
DefDlgProcA
InvertRect
GetWindowLongW
SetMenuDefaultItem
GetClassNameW
IsMenu
TranslateAcceleratorW
CascadeWindows
SystemParametersInfoA

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54ce8e3042778c98ee6a67be9fb716a0

Headers

File Characteristics

Imports

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 221KB - Virtual size: 220KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 108KB

.vsctn Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 221KB - Virtual size: 220KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 108KB

.vsctn
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB