2fd6bf00e6de58319beed6fd9471c914_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2fd6bf00e6de58319beed6fd9471c914_JaffaCakes118
Size

17KB
MD5

2fd6bf00e6de58319beed6fd9471c914
SHA1

cc7653f1f05a8912d550c0114c0093e06c7b2b1c
SHA256

f30ce0a5b6775bc18d2b33669e0d03a9e2d3f8592aa18519d71e92357a692425
SHA512

b6a05b75d6702fa179344a2e7fbd27c9e0bffefb76453e1067e26ca0d3a5b7b975af1dfddc7f1f06819890c54cdacc6cfdb433951ac55b49e1f9f103b3b40c4f
SSDEEP

384:7NHtqw3Oyzkr+nX/BnbO/zSEPJn7FB6QWZliTXliT0+8/cqaH+FE:7mKOtinX/tbE5FBuLqaeF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2fd6bf00e6de58319beed6fd9471c914_JaffaCakes118

Files

2fd6bf00e6de58319beed6fd9471c914_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9940fb2452ab65dbb92600e6874d3c06

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comdlg32

GetFileTitleW

shell32

ShellExecuteW
ExtractIconW
SHGetFileInfoW
Shell_NotifyIconW

advapi32

RegSetValueExA
RegCreateKeyA
RegQueryValueExW
RegCreateKeyExW
RegEnumValueW
RegDeleteKeyA
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegDeleteKeyW
RegQueryValueExA
RegCloseKey
RegSetValueW
RegQueryValueW
RegOpenKeyExW
RegOpenKeyExA
RegDeleteValueW
RegEnumKeyW
RegOpenKeyA
RegNotifyChangeKeyValue

kernel32

LockFile
FreeEnvironmentStringsA
ResetEvent
GetConsoleCP
WriteConsoleW
QueryPerformanceCounter
VirtualAlloc
GlobalAlloc
GetLocaleInfoA
GetCurrentProcess
lstrlenW
GetProcessHeap
UnhandledExceptionFilter
GetFileAttributesA
FindFirstFileW
GetVersionExA
FreeEnvironmentStringsW

shlwapi

PathStripToRootW
PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathRemoveExtensionW

user32

ValidateRect
InflateRect
TrackPopupMenuEx
SetFocus
GetParent
GetClassInfoW
SystemParametersInfoW
DestroyMenu
DestroyIcon
CheckMenuItem
SetDlgItemTextW
DrawTextExW
SetTimer
GetClassLongW
GetClientRect

Sections

.data
Size: 8KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9940fb2452ab65dbb92600e6874d3c06

Headers

DLL Characteristics

File Characteristics

Imports

oleacc

version

comdlg32

shell32

advapi32

kernel32

shlwapi

user32

Sections

.data Size: 8KB - Virtual size: 40KB

.reloc Size: 512B - Virtual size: 16B

.rsrc Size: 2KB - Virtual size: 2KB

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 40KB

.reloc
Size: 512B - Virtual size: 16B

.rsrc
Size: 2KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB