2f9abf90378f101bd721995e25d92820_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2f9abf90378f101bd721995e25d92820_JaffaCakes118
Size

190KB
MD5

2f9abf90378f101bd721995e25d92820
SHA1

7dd73cb85adf181eebf5ca8f4f5ebcecb78c106c
SHA256

7635efa74d6a93fd9a0b8d25f0ae88e186ac6dc0c2796927e5ac0438bb5abd61
SHA512

1ea862d004c3b6e8a420319942d06c152851d5ecfd867bf761cc99264ae29fc7ae2e527c65dc69162fe67b341e43d7449edadfc22bac4af7d6990f8f32c4dddc
SSDEEP

3072:q0AoXltMIqj6obYfnCRllyjkOr+V4xeKfHb3fdx/Sc519wBAy5KBM:q7Ote6PyTOa4Awf3ZfyQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f9abf90378f101bd721995e25d92820_JaffaCakes118

Files

2f9abf90378f101bd721995e25d92820_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6b726b6e64f3821336b929322bca4a17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindow
CharUpperW
GetFocus

kernel32

GetProcessHeap

Exports

Exports

ActionPlaY
?TemplateMessage@@YG_JUAPI_VERSION@@U_LOCALSUBTHREADIDCOMMON@@@Y

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xA142
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0xA145
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0xA345
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 166B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xB125
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xCB85
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0xB085
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.0xE0B5
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b726b6e64f3821336b929322bca4a17

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.itext Size: 512B - Virtual size: 24B

.0xA142 Size: 39KB - Virtual size: 38KB

.0xA145 Size: 46KB - Virtual size: 46KB

.0xA345 Size: 512B - Virtual size: 64B

.data Size: 512B - Virtual size: 166B

.0xB125 Size: 512B - Virtual size: 64B

.0xCB85 Size: 512B - Virtual size: 64B

.0xB085 Size: 31KB - Virtual size: 30KB

.0xE0B5 Size: 38KB - Virtual size: 38KB

.data Size: 2KB - Virtual size: 205KB

.rsrc Size: 512B - Virtual size: 304B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 27KB - Virtual size: 27KB

.itext
Size: 512B - Virtual size: 24B

.0xA142
Size: 39KB - Virtual size: 38KB

.0xA145
Size: 46KB - Virtual size: 46KB

.0xA345
Size: 512B - Virtual size: 64B

.data
Size: 512B - Virtual size: 166B

.0xB125
Size: 512B - Virtual size: 64B

.0xCB85
Size: 512B - Virtual size: 64B

.0xB085
Size: 31KB - Virtual size: 30KB

.0xE0B5
Size: 38KB - Virtual size: 38KB

.data
Size: 2KB - Virtual size: 205KB

.rsrc
Size: 512B - Virtual size: 304B

.reloc
Size: 2KB - Virtual size: 1KB