16d160211b09b6c33b42cf09eef5ab7b_JaffaCakes118

General

Target

16d160211b09b6c33b42cf09eef5ab7b_JaffaCakes118
Size

165KB
MD5

16d160211b09b6c33b42cf09eef5ab7b
SHA1

d704039efefb0192a95b5a759e9895f771e42c05
SHA256

122061a470d5045affca5710bf56486789465ca07de2857b3fc56a92a3d50dc7
SHA512

c611357ef07418a54a174b2d58a216105c0db2b106d54231dece2865e53a5fc749ef7199398d90ff00910dbbb1a97a74fe5fb914caafe2ccd238e24f166a2948
SSDEEP

3072:YKGqvvBqKANCn3YGXoMHkufBoEQ2DX/HIjv+j3gELX/ROD:Yav0KmCn3YGX1HVXKv43gET0D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16d160211b09b6c33b42cf09eef5ab7b_JaffaCakes118

Files

16d160211b09b6c33b42cf09eef5ab7b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

22a5403bbec3c8a807f72952772498f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\UIjChSVW\IwLqhehE\JZHd\pSmqemb\davAd.pdb

Imports

gdi32

GetViewportOrgEx
GetMapMode
EndPath
StretchBlt
GetObjectW
SaveDC
SelectClipRgn
GetObjectA
SetRectRgn

user32

EqualRect
MessageBoxExA
GetFocus
AdjustWindowRectEx
OpenInputDesktop
GetWindow
IsWindowEnabled
GetWindowLongW
GrayStringW
GetUpdateRect
SetForegroundWindow
OpenIcon
GetMenuItemCount
ShowWindow

shell32

DragAcceptFiles

kernel32

GetFileAttributesW
SetThreadLocale
MoveFileA
FindCloseChangeNotification
GetModuleHandleW
GetCurrentDirectoryW
PulseEvent
AreFileApisANSI
GetThreadLocale
GetProcAddress
VirtualQueryEx
GetSystemDefaultLangID
CreateEventW
CloseHandle

Exports

Exports

?arEgfmybomcddjrZpdZ@@YGPAFE@Z
?ugovgfmdBGlozLek@@YGPAHI@Z
?nzqfkTxzftFvtjpeFnx@@YGXEPAE@Z
?nxcCDQhcGlwbf@@YGFM@Z
?jTOqfzhJU@@YGEG@Z

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22a5403bbec3c8a807f72952772498f2

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

shell32

kernel32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 86KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 143KB - Virtual size: 143KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 86KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 143KB - Virtual size: 143KB

.reloc
Size: 2KB - Virtual size: 1KB