24db71327e7600362cc94e35359da7a0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

24db71327e7600362cc94e35359da7a0_JaffaCakes118
Size

130KB
MD5

24db71327e7600362cc94e35359da7a0
SHA1

f9c92ac6f40c73eff432073dc26d562b902f05ee
SHA256

cd7117ba066a9900c1dc8a331a9d73524053e2b9fa9c40b4de2f14f506ec6cb7
SHA512

6ffec52715f635ffaaf493b5595219722862577cfe4f23b171e707acec15402156b22b3ad6d5a8ad0448297a62675594472471605f6cbdc56d64378eecd38f9f
SSDEEP

1536:vDfRe4+2wf/muyN0gQIMS0opx2mYdceK//qI/xgE2KmzZgNtchUFKYH3Xx14m+B9:Vk2wGuGQK0cOk/ZgE2yNdVnx14mIAp+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24db71327e7600362cc94e35359da7a0_JaffaCakes118

Files

24db71327e7600362cc94e35359da7a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8ce5d4cb191c6dd42f26228aff9fc06c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAllocEx
LoadLibraryA
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
DeleteFileA

user32

DefWindowProcA
PostQuitMessage
IsMenu
PostMessageA
IsWindowUnicode
SetRect
GetCursorPos
GetWindowTextA
EnumChildWindows
DestroyIcon
AdjustWindowRectEx
EnableScrollBar
IsDlgButtonChecked
EndDialog
GetWindowLongW
ReleaseCapture
SetParent
SendMessageA
GetKeyboardType
IsCharUpperA
ChildWindowFromPoint
SetMenu
GetDC
IsChild
GetDCEx
DispatchMessageA
DrawFrameControl
EnumThreadWindows
MoveWindow
CreatePopupMenu
GetWindowLongA
InflateRect
MsgWaitForMultipleObjects
WindowFromPoint
SetClipboardData
DrawIconEx
GetWindowTextLengthA
GetActiveWindow
GetCapture
MapWindowPoints
GetLastActivePopup
SendMessageW
CharUpperA
GetDesktopWindow
GetClientRect
CharNextA
FillRect
TranslateMessage
EnableWindow
GetSubMenu
GetMenu
KillTimer
IsZoomed
SetPropA
DrawIcon
GetMessagePos
IsCharLowerA
InsertMenuA
DestroyCursor
EnableMenuItem
LoadCursorA

Exports

Exports

ZjWvfIoaSOa
U2jAf8H7
uv8n8e@4
sLrftH@12
sjbLhv7rG
wyvJX9VFPr
_K1NIhstbG4LEZ@12
_cZvQ16

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

8ce5d4cb191c6dd42f26228aff9fc06c

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 109KB - Virtual size: 237KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 109KB - Virtual size: 237KB

.rsrc
Size: 5KB - Virtual size: 4KB