1a6bd5bf81762466777512ffab4822ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1a6bd5bf81762466777512ffab4822ba_JaffaCakes118
Size

131KB
MD5

1a6bd5bf81762466777512ffab4822ba
SHA1

349f05541df945e3213756921fff3d6caacfc3eb
SHA256

3f3291ebab6795cbdef60edffdb602e9cd90f9344ee2224f1d9f5fe700fdc84c
SHA512

60369e3f69a8f4082b7fe1534eca30481a328cb090a29b57bf548933602d620bbcb6ad558b855d317ed6dd42472012c9c2ea6d9729e0a194bd38ed4b9a5288d6
SSDEEP

3072:8U6aKY+iBLJM3GGmg5wTdj/1LKW/h7ZutjiYLt:8U6aKYo3Gs4dBLKW/N8kYLt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a6bd5bf81762466777512ffab4822ba_JaffaCakes118

Files

1a6bd5bf81762466777512ffab4822ba_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fb7558d4f2a13cdb641259229461279b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\ZksehhonOe\DxbfbgIbaAviT\ucShxGdyFJW\KofGHco\dmdTvCllrrY.pdb

Imports

gdi32

TextOutW
GetDeviceCaps
GetBitmapBits
SetTextAlign
SetViewportExtEx
GetMapMode
GetBkMode
GetWindowOrgEx
ResizePalette
SetViewportOrgEx
SetStretchBltMode
CreateDIBSection
GetSystemPaletteEntries
StartDocW
GetTextAlign
SetBitmapDimensionEx
GetStockObject
PtInRegion

user32

InsertMenuItemW
DispatchMessageA
FindWindowW
MessageBoxExA
SetLastErrorEx
PostMessageA
LoadMenuA
InvertRect
DefDlgProcA
OffsetRect
RegisterClassA
DefDlgProcW
OemToCharBuffA
ShowWindow
SetTimer
GetNextDlgGroupItem
CharUpperA
SetSysColors
OpenInputDesktop
mouse_event
CreateWindowExW
GetMessagePos
IsDialogMessageA
WindowFromPoint
CreateDialogIndirectParamW
CallWindowProcW
GetParent
SendMessageA
PostMessageW
DrawTextA
GetDesktopWindow
SetMenuItemInfoW
GetDCEx
GetUserObjectInformationW
SetWindowTextA
EnumChildWindows
ShowCaret
GetWindow
CheckRadioButton
IsWindowEnabled
CopyImage

msvcrt

__argc

kernel32

GetTimeFormatA
GetCommConfig
GetLongPathNameW
GetModuleFileNameW
lstrcpyA
ResumeThread
GetSystemDirectoryA
CreateWaitableTimerW
LocalReAlloc
CreateSemaphoreA
FindResourceW
SizeofResource
CreateEventW
IsBadCodePtr
CreateDirectoryA
lstrcmpW
SuspendThread
ExitThread
CreateFileA
GetLastError

Exports

Exports

?IosduyIUDYIdkHWYIDUY@@YGPADPADKK@Z

Sections

.text
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mem
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb7558d4f2a13cdb641259229461279b

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 39KB - Virtual size: 38KB

.data Size: 44KB - Virtual size: 129KB

.mem Size: 16KB - Virtual size: 16KB

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 39KB - Virtual size: 38KB

.data
Size: 44KB - Virtual size: 129KB

.mem
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 1KB - Virtual size: 1KB