fe038b19542dac9f66fcaadbce47eaf6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe038b19542dac9f66fcaadbce47eaf6_JaffaCakes118
Size

191KB
MD5

fe038b19542dac9f66fcaadbce47eaf6
SHA1

52049085cb5dc90b3318d8b67b80d93bfabf5a2e
SHA256

aa6fc1353da0e4832b12770d2fb614007d3b32f7101f1164dc0f8e970a122da0
SHA512

e1080de451b1db3ea97e4e061e17774467dd42c08b3269a13fd73f707f0e91a19df5463a2d85d0f63e472606141b7f1dc2f838b6f7250cd039bd507637e1c86b
SSDEEP

3072:34wu0K+M/49HNAwlEk9v4P4gL8D73oOhDbjEJ+VBTRD0KFSlsYX:60T7Huk9msboOhDEJUBTyKJA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe038b19542dac9f66fcaadbce47eaf6_JaffaCakes118

Files

fe038b19542dac9f66fcaadbce47eaf6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

88679c8ea4d2dc994ee84e4dd312b2f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\Tzfv\fZoetkzj\zuzf\uGoyC.pdb

Imports

user32

FindWindowW
GetParent
SetMenuItemBitmaps
UnionRect
wvsprintfA
OemToCharA
CheckMenuItem
GetWindowPlacement
GetWindow
DrawMenuBar
GetDlgCtrlID
GetScrollInfo
IsDialogMessageA
GetDesktopWindow

kernel32

GlobalGetAtomNameA
ClearCommBreak
GetLocalTime
TransactNamedPipe
SleepEx
SetTimerQueueTimer
IsDBCSLeadByteEx
CreatePipe
GetUserDefaultLangID
lstrlenA
lstrlenW
SetFileAttributesW

comdlg32

ChooseFontW
GetFileTitleW

gdi32

GetDeviceCaps
CreateDIBitmap
GetSystemPaletteUse
ScaleViewportExtEx
SetDIBits
GetViewportOrgEx
CreateRectRgnIndirect
SelectPalette

comctl32

ImageList_Destroy
CreateStatusWindowW
ImageList_Remove

ntdll

_aullrem

Exports

Exports

?gzNifHog@@YGPAKKF@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.new
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88679c8ea4d2dc994ee84e4dd312b2f0

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

comdlg32

gdi32

comctl32

ntdll

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.data Size: 17KB - Virtual size: 97KB

.pdata Size: 2KB - Virtual size: 2KB

.idata Size: 2KB - Virtual size: 1KB

.new Size: 133KB - Virtual size: 133KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 17KB - Virtual size: 97KB

.pdata
Size: 2KB - Virtual size: 2KB

.idata
Size: 2KB - Virtual size: 1KB

.new
Size: 133KB - Virtual size: 133KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 3KB - Virtual size: 2KB