3beb67a88704f3279bd40ad88205e42c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3beb67a88704f3279bd40ad88205e42c_JaffaCakes118
Size

222KB
MD5

3beb67a88704f3279bd40ad88205e42c
SHA1

f20f7600a69ab0f3813e22a9cfca9edade4f9c1e
SHA256

9315cd8fe6e507cac74db7b906ee823838c8c3635b30da86aa924b9ef9145866
SHA512

3c814aec98311f2a03d72f1b39f70b4e853862fb3f376dbf96f6b9e7717be2fe9174a8e90e1791aba0ecbb2da6a6924a2a888733e2954792e0ea4d070c7b8aff
SSDEEP

6144:tIFhRYB3mQ/CU5boHB3NjneUAzCb1dHD/QpYFz:tIFWmOCQoHBttjY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3beb67a88704f3279bd40ad88205e42c_JaffaCakes118

Files

3beb67a88704f3279bd40ad88205e42c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

06b902ed97b418e7d5e44131d13207a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\Onpvunqg\LDwPboH\uRmusJk\RdnkVZ.pdb

Imports

user32

CreateIconFromResource
CharToOemW
CallWindowProcW
InsertMenuW
EnableScrollBar
SetRect
HideCaret
SetParent
OpenIcon
FindWindowExW
WaitMessage
GetActiveWindow
KillTimer
MessageBoxA

comctl32

CreatePropertySheetPageW
ImageList_AddMasked

comdlg32

ReplaceTextW
PageSetupDlgW

kernel32

CreateFileMappingA
GlobalAlloc
lstrcpynW
AreFileApisANSI
FindFirstChangeNotificationW
CompareStringA

gdi32

GetBitmapBits
GetDIBColorTable
CreateRectRgnIndirect
EnumFontFamiliesExW
SetBkColor

Exports

Exports

?i_Aqabqhgo_@@YGPAEPAM@Z
?FRZdqhcuh_dn@@YGMK@Z
?__OGY_UMREXMtS@@YGMM@Z
?__Wzre_em@@YGDK@Z
?_libj_qxlqrwDMTPisz@@YGMFM@Z
?MFW_Rel_spvpf__ajtddGB@@YGPAGDI@Z
?bdyxJCSC@@YGPAFKD@Z
?ixc_siaqszXET@@YGFPAI@Z
?Y___VDGug_uibfp@@YGPAIPAI@Z
?_joscp_pTIefqM_@@YGXKPAG@Z

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 187B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Info
Size: 112KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06b902ed97b418e7d5e44131d13207a7

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

comdlg32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 104KB

.rdata Size: 512B - Virtual size: 187B

.data Size: 1KB - Virtual size: 1KB

Info Size: 112KB - Virtual size: 276KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 104KB - Virtual size: 104KB

.rdata
Size: 512B - Virtual size: 187B

.data
Size: 1KB - Virtual size: 1KB

Info
Size: 112KB - Virtual size: 276KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB