9aedc7477a8694d7a34773273e879a02_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9aedc7477a8694d7a34773273e879a02_JaffaCakes118
Size

172KB
MD5

9aedc7477a8694d7a34773273e879a02
SHA1

6232bc5da81ee1f28ef6140989b4e5fffa7efa89
SHA256

37aa1febac3bd33f5633193fe456c1c1203dab522feb313f0c98b35a4e04e3a8
SHA512

fabaad533f4d107547bb5a17a30d9cb498b1a7e8caeda593e4673a5e76713a5a49b9dd1499bad43835a98207f493e67f6de4376e865c9d4ca10c8b4ca7d6c1f8
SSDEEP

3072:C4HU6VKsWtCNbki2dIvVxbgtB5RiIgED4BoH:C406VKsWtCNbklmxbcB5RiIgED4B

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9aedc7477a8694d7a34773273e879a02_JaffaCakes118

Files

9aedc7477a8694d7a34773273e879a02_JaffaCakes118
.exe windows:5 windows x86 arch:x86

571847023eee90a7638bae6d230b6e43

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

@g-e3e_2qalAN+/PaKV/J.pdb

Imports

user32

HiliteMenuItem
MoveWindow
DestroyCursor
GetMenuDefaultItem
GetMenuCheckMarkDimensions
CountClipboardFormats
GetClipCursor
GetMessagePos
GetWindowInfo
DdeAddData
NotifyWinEvent
EnumWindowStationsW

urlmon

CopyStgMedium

oleaut32

VarUI2FromBool

advapi32

AllocateLocallyUniqueId
RegConnectRegistryA

gdi32

SetPixelFormat
StrokePath
ExtSelectClipRgn
StartPage
WidenPath

comctl32

ImageList_Remove

kernel32

CreateSemaphoreA
DosDateTimeToFileTime
GetConsoleScreenBufferInfoEx
GetFileType
CreateMutexW
GetUserDefaultLCID
GetCommandLineW

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Code
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

571847023eee90a7638bae6d230b6e43

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

urlmon

oleaut32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 1KB

DATA Size: 4KB - Virtual size: 8KB

.crt Size: 16KB - Virtual size: 15KB

CONST Size: 40KB - Virtual size: 39KB

Code Size: 88KB - Virtual size: 86KB

.rsrc Size: 4KB - Virtual size: 896B

.reloc Size: 4KB - Virtual size: 344B

.text
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 1KB

DATA
Size: 4KB - Virtual size: 8KB

.crt
Size: 16KB - Virtual size: 15KB

CONST
Size: 40KB - Virtual size: 39KB

Code
Size: 88KB - Virtual size: 86KB

.rsrc
Size: 4KB - Virtual size: 896B

.reloc
Size: 4KB - Virtual size: 344B