2e5c6cc24db019be2bdbbd2ddb2f1e5c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e5c6cc24db019be2bdbbd2ddb2f1e5c_JaffaCakes118
Size

76KB
MD5

2e5c6cc24db019be2bdbbd2ddb2f1e5c
SHA1

d29b4402a380261e819149b1aa27224db7afafac
SHA256

d76691bd14b909261c31d37c62cdbf7cbf9c411b31c08d1de78b2cd67c7debf5
SHA512

9e74aed8d93e0cf01d249099f4ba12f372af957a20f1a36f3556e53a0d657fd93aff0c677397b7ca0800e322fe95c3a0efd37a8cd1f89fa325f7a154620668f8
SSDEEP

768:eItSitoBcfRGKp0yM+TEiVD/gQa87W8vl8TaJIpfJiMnb1FUazptFuuxRdVbmHwR:eIttocQKp0yMyD/gQa6l7swMnbf//ys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e5c6cc24db019be2bdbbd2ddb2f1e5c_JaffaCakes118

Files

2e5c6cc24db019be2bdbbd2ddb2f1e5c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cb3227889a9a3465e2d4120868207f8b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
CopyFileExA
FindAtomA
CopyFileW
OpenFileMappingA
Sleep
GetStdHandle
DeleteFileW
CopyFileA
FindFirstFileA
DeleteFileA
CopyFileExA
CopyFileW
GetConsoleMode
FindFirstFileA
GetCommandLineA
GetLastError
WriteFile
CreateProcessA
GetComputerNameA
GetFileSize
CreateDirectoryA
GetFileTime
OpenFileMappingA
CopyFileA
Sleep
SetLastError
DeleteFileW

user32

CopyImage
EndDialog
CalcMenuBar
LoadMenuA
DrawIcon
IsMenu
GetDC
LoadCursorA
CopyRect
GetMenu
InsertMenuA
AppendMenuW
GetDlgItem
DialogBoxParamA
IsWindow
GetCursor
AppendMenuW
AppendMenuA
LoadMenuA
IsMenu
DrawTextW
CalcMenuBar
CreateIcon
DrawIcon
DrawTextA
DialogBoxParamA
GetWindowTextA
GetMenu
GetWindowTextLengthA
GetDC
CloseWindow
IsWindow
GetFocus
GetWindowTextA
DrawTextW
LoadMenuA
EndDialog
CalcMenuBar
CreateIcon
GetMenu
DrawIcon
GetCursor
CopyRect
DrawIconEx
IsMenu
AppendMenuA
GetDlgItem
GetFocus
InsertMenuA
BlockInput

advapi32

RegReplaceKeyA
RegQueryValueW
RegQueryValueExA
RegQueryInfoKeyW
RegCreateKeyW
RegReplaceKeyW
RegEnumKeyW
RegEnumValueA
RegOpenKeyExW
RegDeleteKeyA
RegOpenKeyA
RegDeleteValueA
RegEnumKeyExA

Sections

.text
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.modata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb3227889a9a3465e2d4120868207f8b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 4KB - Virtual size: 2KB

.modata Size: 48KB - Virtual size: 46KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 3KB

.edata Size: 4KB - Virtual size: 29KB

.text
Size: 4KB - Virtual size: 2KB

.modata
Size: 48KB - Virtual size: 46KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 3KB

.edata
Size: 4KB - Virtual size: 29KB