2ef39b4e50e66592b9a2b792be12f9fb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ef39b4e50e66592b9a2b792be12f9fb_JaffaCakes118
Size

143KB
MD5

2ef39b4e50e66592b9a2b792be12f9fb
SHA1

039c6ded3780dac5e0beb8797a955dbd0850c800
SHA256

dcc30660ed932f3792fb96777225ab176e718c5a898dc39619dbb572b2793de6
SHA512

d253441c9c12910b354a2fd8a7f33a0ff1c94a229083cd4cf38d9165ff8272d8be68d46198e675ff25842b27ebc03652a847122de1941b4110afdc1cd4258434
SSDEEP

3072:QYFWSc8fVZd78yOYsWvz/tupjbjN+noKzS6GK9luhhDy7k8:QsffLOGAFtmRGMExWZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ef39b4e50e66592b9a2b792be12f9fb_JaffaCakes118

Files

2ef39b4e50e66592b9a2b792be12f9fb_JaffaCakes118
.exe windows:6 windows x86 arch:x86

272ee41c88d62dc29e97a837c0aff4eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetCommandLineW
GetModuleHandleW
GetCommandLineW
GetCommandLineW
SetEvent
LocalFree
GetModuleFileNameA
GetACP
GetCommandLineA
WaitForSingleObject
QueryPerformanceCounter
GetCurrentProcessId
LocalAlloc
WaitForSingleObject
GetModuleFileNameA
GetModuleHandleA
GetCommandLineW
SleepEx
GetCurrentThreadId
GetCommandLineW
FormatMessageW
GetModuleHandleW
GetACP
GetProcessHeap
WaitForSingleObject
GetModuleHandleA
GetModuleFileNameA
WaitForSingleObject
MultiByteToWideChar
QueryPerformanceCounter
SetEvent
GetModuleHandleA
FormatMessageW
GetTickCount
MultiByteToWideChar
GetTickCount
GetTickCount
GetModuleHandleW
LocalFree
GetProcessHeap
MultiByteToWideChar
WaitForSingleObject
MultiByteToWideChar
FormatMessageW
GetACP
GetCurrentProcess
VirtualFree
SetUnhandledExceptionFilter
MultiByteToWideChar
FormatMessageW
VirtualFree
GetCurrentProcess
VirtualFree
GetModuleHandleA
LocalFree
LocalAlloc
VirtualFree
SetUnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameA
GetCommandLineW
GetCurrentProcess
LocalFree
GetModuleHandleA
GetCommandLineW
GetTickCount
LocalAlloc
WaitForSingleObject
GetModuleHandleA
GetProcessHeap
VirtualFree
LocalFree
SetUnhandledExceptionFilter
GetCurrentProcessId
GetModuleHandleA
QueryPerformanceCounter
LocalAlloc
VirtualFree
MultiByteToWideChar
GetModuleHandleA
SetUnhandledExceptionFilter
LocalAlloc
FormatMessageW
LocalAlloc
MultiByteToWideChar
GetACP

user32

LoadIconW
GetDC
GetWindowRect
GetDlgItem
GetMessageW
GetDlgItem
GetDlgItem
GetSystemMetrics
DefWindowProcW
DefWindowProcW
SendMessageW
GetDlgItem
SetTimer
CreateWindowExW
SendMessageW
CreateWindowExW
SendMessageW
DestroyWindow
DestroyWindow
GetSystemMetrics
GetSystemMetrics
SetTimer
ReleaseDC
LoadIconW
GetDlgItem
DefWindowProcW
DefWindowProcW
SendMessageW
GetDC
GetSystemMetrics
PostMessageW
ReleaseDC
LoadIconW
GetDC
GetDC
CreateWindowExW
SendMessageW
LoadIconW
GetWindowRect
ReleaseDC
GetMessageW
PostMessageW
SetTimer
DefWindowProcW
SendMessageW
ShowWindow
ShowWindow
SendMessageW
CreateWindowExW
GetWindowRect
ReleaseDC
GetSystemMetrics
PostMessageW
GetDC
GetWindowRect
ShowWindow
GetWindowRect
SendMessageW
GetDlgItem
GetWindowRect
DefWindowProcW
ShowWindow
GetDlgItem
GetSystemMetrics
LoadIconW
PostMessageW
DestroyWindow
SendMessageW
ReleaseDC
GetMessageW
GetDlgItem
GetDlgItem
DefWindowProcW
GetDC
GetSystemMetrics
DefWindowProcW
GetWindowRect
GetDC
CreateWindowExW
DefWindowProcW
GetWindowRect
DefWindowProcW
ReleaseDC
DefWindowProcW
GetWindowRect
DefWindowProcW
LoadIconW
ReleaseDC
GetDlgItem
GetSystemMetrics
GetMessageW
LoadIconW
SetTimer
GetDlgItem
CreateWindowExW
SetTimer

ntdll

NtAllocateVirtualMemory

gdi32

LineTo
PatBlt
DeleteObject
GetStockObject
DeleteObject
GetStockObject
DeleteObject
PatBlt
CreateCompatibleBitmap
MoveToEx
BitBlt
GetDeviceCaps
LineTo
CreateCompatibleBitmap
PatBlt
CreateCompatibleBitmap
SelectObject
GetDeviceCaps
GetDeviceCaps
SelectObject
BitBlt
DeleteDC
CreateCompatibleDC
GetTextMetricsW
LineTo
LineTo
GetDeviceCaps
GetStockObject
SetTextColor
GetTextMetricsW
PatBlt
LineTo
SetTextColor
DeleteDC
LineTo
SetTextColor
SelectObject
CreateCompatibleDC
DeleteObject
CreateCompatibleDC
GetTextMetricsW
SelectObject
MoveToEx
BitBlt
CreateCompatibleDC
GetDeviceCaps
GetStockObject
CreateCompatibleBitmap
DeleteDC
MoveToEx
PatBlt
SelectObject
SelectObject
LineTo
GetDeviceCaps
MoveToEx
PatBlt
PatBlt
CreateCompatibleBitmap
DeleteObject
GetDeviceCaps
GetStockObject
SelectObject
GetDeviceCaps
GetDeviceCaps
DeleteDC
DeleteDC
LineTo
GetObjectW
LineTo
GetTextMetricsW
GetStockObject
GetTextMetricsW
DeleteDC
PatBlt
GetStockObject
CreateCompatibleBitmap
PatBlt
GetStockObject
GetDeviceCaps
LineTo
BitBlt
SetTextColor
DeleteObject
PatBlt
GetDeviceCaps
CreateCompatibleDC
GetStockObject
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleBitmap
DeleteDC
GetDeviceCaps
GetObjectW
GetObjectW
GetStockObject
GetStockObject
GetObjectW

Sections

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

272ee41c88d62dc29e97a837c0aff4eb

Headers

File Characteristics

Imports

kernel32

user32

ntdll

gdi32

Sections

.data Size: 24KB - Virtual size: 24KB

.data Size: 7KB - Virtual size: 8KB

.data Size: 108KB - Virtual size: 108KB

.rsrc Size: 2KB - Virtual size: 124KB

.data
Size: 24KB - Virtual size: 24KB

.data
Size: 7KB - Virtual size: 8KB

.data
Size: 108KB - Virtual size: 108KB

.rsrc
Size: 2KB - Virtual size: 124KB