27edb93c863f6d949809dff368db9417_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27edb93c863f6d949809dff368db9417_JaffaCakes118
Size

242KB
MD5

27edb93c863f6d949809dff368db9417
SHA1

3d58da09e0d7bc6ca63239fa5749dc27d3e41e7a
SHA256

8e8c7c64b90eb078ab76718a5049655445f9ed477f859b6a88d22e94b2265a88
SHA512

55e5baee2c5a0e548a3dc7e264fc90415409adbd9d9aad50852224e9e5d8a3a58669a90e887d0559696ef528ae8d6d5b1c44f468918eaf9dbda4aa6b383c1630
SSDEEP

6144:i2PMNQCWKMGlG9eJ/tgolGEhhj1XOb6VTWmiiWk:i4CWKJlAehtjhh4WVym

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27edb93c863f6d949809dff368db9417_JaffaCakes118

Files

27edb93c863f6d949809dff368db9417_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b2b16eecf495ec8fdcc4cd58c7802d6d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsCharLowerA
PostThreadMessageW
EqualRect
DrawTextExW
SetClassLongW
GetAsyncKeyState
ScrollWindow
DispatchMessageA
LoadIconW
GetWindowDC
GetScrollPos
GetWindowTextLengthW
GetMenuItemRect
SetMenuItemBitmaps
SetDlgItemTextW
CheckRadioButton
IsIconic
SetParent
GetClassInfoW
PostMessageW
AdjustWindowRectEx
InvalidateRect
PeekMessageA
GetCaretPos
GetSubMenu
InternalGetWindowText
TranslateAcceleratorA
DragObject
IsCharAlphaW
GetUserObjectInformationA
MapDialogRect
GetClassInfoExW
FindWindowExW
GetUpdateRect
OffsetRect
ShowScrollBar

kernel32

SetEvent
CreateNamedPipeA
FindCloseChangeNotification
MulDiv
GlobalHandle
GetComputerNameExW
GlobalUnlock
GetSystemTimeAsFileTime
lstrlenW
lstrcpyW
lstrcpynW
GetFullPathNameA
ClearCommBreak
GetModuleFileNameA
SetMailslotInfo
OpenFileMappingW
IsBadReadPtr

gdi32

ExtTextOutA
Ellipse
GetTextAlign
GetPixel
GetTextCharsetInfo
CombineRgn
GetWindowOrgEx
ExtFloodFill
CreatePenIndirect
UnrealizeObject
GetSystemPaletteUse
SelectObject
EndDoc
LineTo
SetWindowOrgEx
TextOutW
GetBkMode

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 222KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2b16eecf495ec8fdcc4cd58c7802d6d

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 222KB - Virtual size: 221KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 109KB

.vsctn Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 222KB - Virtual size: 221KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 109KB

.vsctn
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB