341f0f1031db64ac4beb72c7d26e7246_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

341f0f1031db64ac4beb72c7d26e7246_JaffaCakes118
Size

135KB
MD5

341f0f1031db64ac4beb72c7d26e7246
SHA1

b8dd986ec9247f2cb7724af13e2808f906a6b00d
SHA256

3f0ab64692e0421e4988abaf70ed7f922ed50d1838d5e0fd8ce8f0a60680208d
SHA512

8a6a3780ee732e05f5da292d99cf01d4955656cfada28c75aec5c2550cb24cb42508cd2ac6fec93709e585656689cf62c16f38925b9d64d991617ccc8564d40f
SSDEEP

3072:RUNEo80CEkEKTmT8qDBb04fy8W9MmWdk:fpiT8qNbaDL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
341f0f1031db64ac4beb72c7d26e7246_JaffaCakes118

Files

341f0f1031db64ac4beb72c7d26e7246_JaffaCakes118
.exe windows:5 windows x86 arch:x86

55760d8bd31ac6064b5fc3514b2e6ec4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\xtUuhlL\qZunk\aKbhCXst\oZqrer.pdb

Imports

shlwapi

StrCatBuffW

comdlg32

GetOpenFileNameA
GetOpenFileNameW
PageSetupDlgW

comctl32

DestroyPropertySheetPage
ImageList_Write
ImageList_Draw
ImageList_GetIconSize

gdi32

CreatePalette
SetPixel
GetPixel
CreateFontIndirectW
SetPaletteEntries
FillRgn
GetTextCharsetInfo

kernel32

InitializeCriticalSection
CreateDirectoryW
GetFullPathNameA
HeapValidate
lstrcpynA
lstrlenW
SearchPathA
CreateRemoteThread
CreateSemaphoreW
ClearCommError
GetCommState
GetPriorityClass
GetUserDefaultLCID
ResumeThread

user32

GetMenuDefaultItem
GetWindowLongA
DestroyCaret
RemovePropA
DrawMenuBar
wsprintfW
CheckDlgButton
GetClientRect
GetUserObjectInformationA
SetCaretPos
DeleteMenu
CreateWindowExA
SetWindowPos
IsWindowVisible
IsWindowEnabled

Exports

Exports

?aKjrxkpZHinLWqWttod@@YGJPAEPAJ@Z
?UkYualdesY@@YGPAXPADJ@Z
?dBuhJjfsdypfJogVXuAd@@YGPAMD@Z
?anppwlskpb@@YGFF@Z
?BzywikDLhorhypO@@YGMK@Z

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55760d8bd31ac6064b5fc3514b2e6ec4

Headers

File Characteristics

PDB Paths

Imports

shlwapi

comdlg32

comctl32

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 30KB

.edata Size: 1KB - Virtual size: 1KB

.idata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 69KB

.rsrc Size: 91KB - Virtual size: 91KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 30KB - Virtual size: 30KB

.edata
Size: 1KB - Virtual size: 1KB

.idata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 69KB

.rsrc
Size: 91KB - Virtual size: 91KB

.reloc
Size: 4KB - Virtual size: 4KB