240e8bf2d8be7b57fc155c54e54ce9bc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

240e8bf2d8be7b57fc155c54e54ce9bc_JaffaCakes118
Size

120KB
MD5

240e8bf2d8be7b57fc155c54e54ce9bc
SHA1

76b02b4aa33c7d052586f287eb3929a0ff63ee7c
SHA256

281f1be15b16c0f0990576fc77d03885f2d98e8a90e4faf4b8f6e48a764fa042
SHA512

47a55f4611da9c510e827968fff31d36515ae6635b659cc874c08c388a0431d28c4d946c3eadcf32dd16e58c6eeeef138654da71af96dbc3f3281e8de703aa48
SSDEEP

1536:WBHk4X+19m1jsQIqCQlCd7InQp+Z+3QgGL/4+glYInZtHylwHzkr6xSTcnrK7BQl:GI1XHHSQcUalwHKrIWBJy1/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
240e8bf2d8be7b57fc155c54e54ce9bc_JaffaCakes118

Files

240e8bf2d8be7b57fc155c54e54ce9bc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5cf9f8e6ec59e09a56a9de95d96b3472

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\XmhruSYq\uzft\cutdym.pdb

Imports

gdi32

GetDIBits
EndPath
CreateSolidBrush
GetTextAlign
CreateBitmap
CreateEllipticRgnIndirect

user32

AppendMenuW
GetWindowPlacement
DestroyIcon
ChangeMenuW
GetCursorPos
AdjustWindowRectEx
ShowScrollBar
SystemParametersInfoA
CharUpperBuffW
WaitMessage
GetMenuState
EnableScrollBar
GetDlgItemInt
RegisterWindowMessageA

shlwapi

UrlGetPartA
ChrCmpIA

comdlg32

GetFileTitleW
PageSetupDlgW
ChooseFontW

kernel32

LoadResource
GetFileInformationByHandle
GetTickCount
SetMailslotInfo
CreateMailslotW
RaiseException
lstrcpyA
SetThreadExecutionState

Exports

Exports

?irazfyqk@@YGIEJ@Z
?FTFF_ABWhuwvgoy_J_Q__Q@@YGDHPAI@Z
?kbbdi_iq_u@@YGGPAFI@Z
?_pkp_yyqdo_vg__@@YGEFM@Z
?_s_jnKUjU@@YGKE@Z

Sections

.text
Size: 46KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idat
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pacdat
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5cf9f8e6ec59e09a56a9de95d96b3472

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

shlwapi

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 46KB - Virtual size: 166KB

.data Size: 20KB - Virtual size: 20KB

.idat Size: 11KB - Virtual size: 10KB

.rdata Size: 22KB - Virtual size: 22KB

.pacdat Size: 10KB - Virtual size: 9KB

.rsrc Size: 6KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 46KB - Virtual size: 166KB

.data
Size: 20KB - Virtual size: 20KB

.idat
Size: 11KB - Virtual size: 10KB

.rdata
Size: 22KB - Virtual size: 22KB

.pacdat
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 6KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 1KB