390591429d16ed86ac22cb8d2ab5dd47_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

390591429d16ed86ac22cb8d2ab5dd47_JaffaCakes118
Size

244KB
MD5

390591429d16ed86ac22cb8d2ab5dd47
SHA1

8b7851a87f7e78c9f5c6b20e54fd25f9293dc32d
SHA256

f4f61af1c06d3f5acf63422ba59150ff938ab3c0ef1de21a04649b7c9fc6db45
SHA512

e774359d311186fc606b8d2fb48f36e80cf230a823bf72777c20f5d400e5aef6c7e4c0eb7f9918d97056df7b96447ae3d21db80d3e180625057321894e0ec5f5
SSDEEP

6144:i4fUarvY9g6/gppcN9AZb3mwgB9pmQw2OdhxDsT:0arw9lITBR3mwgBxw2OdrsT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
390591429d16ed86ac22cb8d2ab5dd47_JaffaCakes118

Files

390591429d16ed86ac22cb8d2ab5dd47_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2956bc6609547971060fc9d04c7513ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowEnabled
ModifyMenuW
IsWindowVisible
GetWindowDC
EnableMenuItem
GetUserObjectInformationA
GetTopWindow
CreateIconFromResource
GetCaretPos
GetKeyboardLayoutList
DialogBoxParamA
MessageBoxA
DrawTextA
TrackPopupMenuEx
GetClipCursor
SendDlgItemMessageW
SetScrollRange
TranslateAcceleratorW
CopyAcceleratorTableW
DrawAnimatedRects
SetDlgItemTextA
IsMenu
GetForegroundWindow
DefWindowProcA
DrawIconEx
GetDlgItemTextA
MapDialogRect
GetParent
ScreenToClient
GetMessageTime
GetWindow
RegisterClassA
GetWindowLongA
ShowCaret
DeferWindowPos
InsertMenuItemW
SetMenuDefaultItem
GetMessageA

gdi32

GetTextExtentPoint32A
RemoveFontResourceW
EnumFontsW
TextOutW
CreateFontIndirectA
GetTextExtentPointW
GetDeviceCaps
GetDIBColorTable
Polyline
SetViewportOrgEx
SetViewportExtEx
GetBitmapBits
PathToRegion
GetBrushOrgEx
StartDocW
GetLayout
SetBrushOrgEx

comdlg32

CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameW
FindTextW

kernel32

SearchPathA
GetFileAttributesA
CreateFileA
MapViewOfFile
ConvertDefaultLocale
GetSystemWindowsDirectoryA
CreateFileMappingW
FreeLibrary
SetSystemTime
CloseHandle
FreeResource
GetFileSize
SetEvent
SetupComm
EnumSystemLocalesA
MoveFileA
CallNamedPipeW

Exports

Exports

?MNDkjiduIUDIUiuDIUdIOpDJKKDLKJDLIuyd@@YGKEPA_WG@Z

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 55KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2956bc6609547971060fc9d04c7513ff

Headers

File Characteristics

Imports

user32

gdi32

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 132KB - Virtual size: 132KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 39KB - Virtual size: 38KB

.xdata Size: 55KB - Virtual size: 169KB

.jdata Size: 12KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 132KB - Virtual size: 132KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 39KB - Virtual size: 38KB

.xdata
Size: 55KB - Virtual size: 169KB

.jdata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB