3b18fefebc00cd4a3128973fdbfeec2a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b18fefebc00cd4a3128973fdbfeec2a_JaffaCakes118
Size

162KB
MD5

3b18fefebc00cd4a3128973fdbfeec2a
SHA1

5fb37f5a9f26ef328f7c0cd36e7726e90a9fab60
SHA256

fb7cf5ff0810bad905fc0fadd3a5d7146049673cd31f03106dbee103a7bc2760
SHA512

9da2d209f0d300d8350f404331924fe0a5c1c328b51dbcb0da84c74fb25974c7b49f8d1c4dce16a4c835cb6986a956a1c4b092576a241605bd0c825dd82457d7
SSDEEP

3072:F5x4Kb+qzQg8sNzbajqL9GoDiT7g0nBrx1qYeh7gi1eYCFIyoVXr6l1xp:rx46+qscbWq+ZBrx1neh7gPHIyow

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b18fefebc00cd4a3128973fdbfeec2a_JaffaCakes118

Files

3b18fefebc00cd4a3128973fdbfeec2a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4affdbb67824725943d7acf6dd2b5504

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\Pzuykall\zUBBsJSf\hcHlcSIftcqbS\iUopXqfsY.pdb

Imports

shlwapi

StrCmpNW

kernel32

SetCommTimeouts
lstrcmpW
HeapAlloc
CreateDirectoryA
CreateNamedPipeW
GetFileTime
SetErrorMode
HeapWalk
GetCommState
GetVersion
LoadLibraryA
DeleteFileA
lstrcmpA

user32

GetMenuState
IsWindowVisible
OpenIcon
GetForegroundWindow
FindWindowA

Exports

Exports

?SetRemoteDesktopConnec

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jkhkhg
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vfvc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hgfjug
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfg
Size: 512B - Virtual size: 117B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfgf
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4affdbb67824725943d7acf6dd2b5504

Headers

File Characteristics

PDB Paths

Imports

shlwapi

kernel32

user32

Exports

Exports

Sections

.text Size: 137KB - Virtual size: 136KB

.data Size: 15KB - Virtual size: 15KB

.jkhkhg Size: 512B - Virtual size: 44B

.vfvc Size: 512B - Virtual size: 32B

.hgfjug Size: 512B - Virtual size: 32B

.gfg Size: 512B - Virtual size: 117B

.gfgf Size: 512B - Virtual size: 32B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 137KB - Virtual size: 136KB

.data
Size: 15KB - Virtual size: 15KB

.jkhkhg
Size: 512B - Virtual size: 44B

.vfvc
Size: 512B - Virtual size: 32B

.hgfjug
Size: 512B - Virtual size: 32B

.gfg
Size: 512B - Virtual size: 117B

.gfgf
Size: 512B - Virtual size: 32B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB