2f182dfe2dad4fa5d727a64c2d5dc65e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2f182dfe2dad4fa5d727a64c2d5dc65e_JaffaCakes118
Size

85KB
MD5

2f182dfe2dad4fa5d727a64c2d5dc65e
SHA1

b0899a642d87a3bba71f09fc455b8bb14deb3015
SHA256

0a3b6f0fa377b9d200182590e84c03f8edbfef5948bbe506f8154f3e0ea8aab0
SHA512

6d8dd731ed9998d36508f9b3f8cd5ad7baa04229580fe4e54af66b706bab98d8b36539cbf894725b42adb4a107eb9cfd03be0ab5264bc9c9e312f8ed2216aa6d
SSDEEP

768:O7MFRPP2lV2URvlncFyhP1w81MkVLz6LPSCUlZupOxljUPYi4PYbeSUDmmWZ0oHa:JH6XzuyhPiCzuHU3unPYi4gNpZ0ouPN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f182dfe2dad4fa5d727a64c2d5dc65e_JaffaCakes118

Files

2f182dfe2dad4fa5d727a64c2d5dc65e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90d7aa142c707a0b5ad58aaa6f02b079

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetCurrentThreadId
HeapAlloc
lstrcpynA
WriteFile
GetEnvironmentStrings
ReadFile
GetStdHandle
SetEvent
GetACP
MulDiv
SetErrorMode
WaitForSingleObject
ExitProcess
LocalReAlloc
LocalFree
LocalAlloc
GetLocaleInfoA
lstrcpyA
DeleteFileA
LockResource
GetCommandLineA
lstrlenA
ExitThread
lstrcatA
GetCurrentThread
GetStartupInfoA
MoveFileExA
GetLocalTime
GetProcAddress
LoadLibraryA
GetModuleFileNameA
FindClose
CreateEventA
CloseHandle
EnterCriticalSection
lstrcmpiA
RaiseException
GetTickCount
DeleteCriticalSection
VirtualAlloc
SetFilePointer
LoadResource
HeapFree
MoveFileA
CreateThread
GlobalDeleteAtom
GlobalFindAtomA
FindResourceA
GlobalAlloc
GetUserDefaultLCID
GetVersionExA
GlobalAddAtomA
HeapDestroy
GetCPInfo
GetFullPathNameA
GetVersion
FreeLibrary

user32

GetClassLongA
EnumThreadWindows
GetMessagePos
DrawEdge
DefFrameProcA
EndPaint
MessageBoxA
CharNextA
SetWindowPos
GetMenu
EnableWindow
FindWindowA
FillRect
DefWindowProcA
DispatchMessageA
GetSubMenu
GetMenuStringA
GetKeyState
DeferWindowPos
GetFocus
GetLastActivePopup
EnableScrollBar
ShowWindow
GetSysColor
GetSysColorBrush
SetCursor
GetMenuItemInfoA
DispatchMessageW
IsChild
EnumChildWindows
CreateIcon
GetWindow
EnableMenuItem
EqualRect
DrawIconEx
BeginDeferWindowPos
DrawIcon
CreateMenu

Sections

CODE
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90d7aa142c707a0b5ad58aaa6f02b079

Headers

File Characteristics

Imports

kernel32

user32

Sections

CODE Size: 6KB - Virtual size: 6KB

.data Size: 5KB - Virtual size: 25KB

.edata Size: 66KB - Virtual size: 65KB

BSS Size: 5KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 571B

CODE
Size: 6KB - Virtual size: 6KB

.data
Size: 5KB - Virtual size: 25KB

.edata
Size: 66KB - Virtual size: 65KB

BSS
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 571B