26fe51de85faf34dfbe3449fa1edd764_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26fe51de85faf34dfbe3449fa1edd764_JaffaCakes118
Size

114KB
MD5

26fe51de85faf34dfbe3449fa1edd764
SHA1

cc9741360ca8596052cf4d7119afe11d6ca450f1
SHA256

817e52653af417c9ca929f676adbea8fcdf0cc21bfd877a62e89801bad0d3510
SHA512

a3c3049785cfda1c046b6778fd0327ebd87a5dc393732d6053172e7a15192c87dbb885eb9def52d4ed4bc4ca915a9079ff7eb5e7948451b2dea6156c3f84c3c6
SSDEEP

3072:f7obrwsl8dwm3QJQqHphqJt8ekhBapEcBg3:0T4PDq/qJIu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26fe51de85faf34dfbe3449fa1edd764_JaffaCakes118

Files

26fe51de85faf34dfbe3449fa1edd764_JaffaCakes118
.exe windows:5 windows x86 arch:x86

457d7ba1e26a8174efea89deadd22a45

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\Lzsdo\fxmpPPu\inYfw\Lkizk\wCjNdlht.pdb

Imports

gdi32

Ellipse
CombineRgn
SetRectRgn
GetStockObject
CreateRectRgnIndirect
ScaleViewportExtEx
GetROP2
GetTextCharsetInfo
BitBlt
StretchBlt
PatBlt
GetTextExtentPointA
GetPaletteEntries
GetNearestColor

user32

DefDlgProcA
GetNextDlgGroupItem
OpenInputDesktop
CharUpperA
GetWindowTextA
GetScrollRange
CreateMenu
IsIconic
LookupIconIdFromDirectory
SetCursor
SwitchToThisWindow
GetForegroundWindow
ScreenToClient
SetScrollRange
IsCharAlphaNumericW
CharUpperW
ShowScrollBar
SetMenu
GetDC
CreateIconFromResource
CharNextW
SetDlgItemInt
GetKeyboardLayoutList
GetKeyboardLayoutNameW
CopyImage
GetCapture
RegisterWindowMessageA
MonitorFromPoint
GetCaretPos
SetRectEmpty
CharToOemBuffA
GetNextDlgTabItem

kernel32

LoadLibraryA
GetTickCount
LocalAlloc
GlobalFree
CreateEventW
SetEndOfFile
GetThreadPriority
FindNextFileW
GetThreadTimes
DefineDosDeviceW
GetFileAttributesA
GetPriorityClass
EnumSystemLocalesA
lstrcatW
FoldStringW
GetFileType
CreateWaitableTimerA

comctl32

ImageList_LoadImageW
PropertySheetW
ImageList_GetImageCount
CreatePropertySheetPageW
ImageList_ReplaceIcon
CreateToolbarEx

Exports

Exports

?_CreateDesktopExW@@YGXEHPAD@Z

Sections

.text
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

457d7ba1e26a8174efea89deadd22a45

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

kernel32

comctl32

Exports

Exports

Sections

.text Size: 70KB - Virtual size: 69KB

.rdata Size: - Virtual size: 132KB

.data Size: 23KB - Virtual size: 22KB

.pdata Size: 18KB - Virtual size: 18KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 70KB - Virtual size: 69KB

.rdata
Size: - Virtual size: 132KB

.data
Size: 23KB - Virtual size: 22KB

.pdata
Size: 18KB - Virtual size: 18KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB