3121291d854faffa3b1ec48b5dd94ba9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3121291d854faffa3b1ec48b5dd94ba9_JaffaCakes118
Size

227KB
MD5

3121291d854faffa3b1ec48b5dd94ba9
SHA1

4e3c64efd55dc9fe14952997ddc95c0a34c43fd2
SHA256

485206fbfaceeb6f41a8465687e82ea44b916cc40cb5615af4ca52b96611ea65
SHA512

465c4248eadeaeb16997fd1106585342546f9d8ab923b63023edb3d9b092eb47eaf99ed097d044e9bfbd1a3da11e796ad36cba679c8d854a82a06892357e1f18
SSDEEP

6144:BY21MpuXHbZIP8BJFemuhi7VgPHlnXEQMOG/k+ianh:BNBb19uIZg1XEbdZianh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3121291d854faffa3b1ec48b5dd94ba9_JaffaCakes118

Files

3121291d854faffa3b1ec48b5dd94ba9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ecaffb124b8ea8309422b157002eb724

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CombineRgn
CreateBitmap
CreateDIBSection
DPtoLP
RemoveFontResourceW
ExtTextOutA
SetDIBColorTable
SelectClipRgn
CreateDIBitmap
Rectangle
GetPixel
SetBkColor
PathToRegion
GetTextExtentPoint32W
CreateFontIndirectW
IntersectClipRect
WidenPath

user32

GetMessageTime
LoadMenuA
GetDCEx
CharUpperA
DrawTextW
GetWindowPlacement
RegisterClassW
GetScrollRange
SetWindowLongW
GetCursorPos
CharLowerBuffW
MapWindowPoints
GetWindowRect
GetMenuStringA
GetMenuStringW
DestroyIcon
CharUpperBuffA
ExitWindowsEx
IsWindowEnabled
SetWindowTextW
DrawMenuBar
SetClassLongW
GetUserObjectInformationW
InsertMenuA
OffsetRect
AppendMenuA
TrackPopupMenu
OpenIcon
mouse_event
AttachThreadInput
GetDlgCtrlID
GetTopWindow
CheckMenuRadioItem
RedrawWindow
LoadAcceleratorsA
GetKeyState
CheckRadioButton

kernel32

GetWindowsDirectoryW
GetTempFileNameA
AreFileApisANSI
WriteFile
SizeofResource
SetTimerQueueTimer
GetFileTime
GetBinaryTypeW
TlsGetValue
QueryDosDeviceW
DeleteCriticalSection
RemoveDirectoryW
CreateSemaphoreW
CloseHandle
GetSystemDirectoryA
lstrcpynA
GetCommTimeouts
SetThreadPriority

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 211KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ecaffb124b8ea8309422b157002eb724

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 211KB - Virtual size: 211KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 110KB

.vsctn Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 211KB - Virtual size: 211KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 110KB

.vsctn
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB