462868fc7e7e9a3f74fbd4fb49929cf4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

462868fc7e7e9a3f74fbd4fb49929cf4_JaffaCakes118
Size

51KB
MD5

462868fc7e7e9a3f74fbd4fb49929cf4
SHA1

fb89def5a913c2a749be83f56413d7eeac71763d
SHA256

cd2db3fc42fe92ffa8351119b63e8fd4dcbfd1fbc57bcdc12f870d5134e162ef
SHA512

0aaa22cf0213013553e3ccb75637341a60d9357322fab791254cc45ff2f67e3df61cbe170090fcc5d6ad9aa2d1a67980f2554efb45a66738bf9232766e6acb48
SSDEEP

768:+M01UuEPTuCEeoPg9oBkNWh2+izATZe8kpHMKc3a1OUG5W5r9:+aPTPEP3B79PfJKoW9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
462868fc7e7e9a3f74fbd4fb49929cf4_JaffaCakes118

Files

462868fc7e7e9a3f74fbd4fb49929cf4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e7a03ddd7cb7b1870ff7f56672b097af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\wqkr\vapxgcbl\ejpjm\mAbSH.pdb

Imports

user32

BeginDeferWindowPos
IntersectRect
GetShellWindow
DialogBoxIndirectParamW
DefWindowProcW
IsDlgButtonChecked
DialogBoxParamW
MapVirtualKeyExW
GetClientRect
ShowWindowAsync
SetForegroundWindow
CharUpperA
AdjustWindowRect

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
PropertySheetW

shlwapi

StrSpnA
PathCanonicalizeW
PathMakePrettyA

gdi32

OffsetRgn
RestoreDC
SetBitmapDimensionEx
CreateSolidBrush
CreateDIBSection

kernel32

EnumResourceTypesA
GetExitCodeThread
LCMapStringA
ExitProcess
SetSystemTimeAdjustment
LocalUnlock
GetStdHandle

msvcrt

exit

Exports

Exports

?__RJQ__G@@YGPA_NPAK@Z
?hs_UJIC_XFGjblI@@YGDPADPAE@Z
?PLTPB_ADK_GdhoaG_PL@@YGKJN@Z
?F_D_OMUBA_PWugqJRS_Z@@YGPAHH@Z
?fa_oab_@@YGIPA_N@Z
?BSESE_b_onltmM_ezpx_vl@@YGPAXE@Z
?MZdf_iBCR_bjmAZ_CTIB@@YGPAXPAHPAK@Z
?I_BH_WHWWZA@@YGM_ND@Z
?Fjq_wr_vVBYFW@@YGPAXNE@Z
?qkfvl_lq_JONS@@YGPAFMPAF@Z
?wS_Ilq_e_t@@YGXDPAF@Z
?tjv_zSJUBNQM@@YGPADIK@Z
?QFQO_AsjD__GJITxmy_kh@@YGFF@Z
?CUXtamihHDgKREho@@YGFMPAI@Z
?XTL_LR_SG@@YGPA_NN@Z
?wcaXY_FORX@@YGPAEIF@Z
?MTY_ZIXDBDIIde_uuz@@YGPADKPAN@Z

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.r_dat
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7a03ddd7cb7b1870ff7f56672b097af

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

shlwapi

gdi32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 22KB

.r_dat Size: 512B - Virtual size: 152B

.data Size: 5KB - Virtual size: 37KB

.rdata Size: 9KB - Virtual size: 8KB

.pdata Size: 1024B - Virtual size: 608B

.rsrc Size: 9KB - Virtual size: 12KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 22KB

.r_dat
Size: 512B - Virtual size: 152B

.data
Size: 5KB - Virtual size: 37KB

.rdata
Size: 9KB - Virtual size: 8KB

.pdata
Size: 1024B - Virtual size: 608B

.rsrc
Size: 9KB - Virtual size: 12KB

.reloc
Size: 2KB - Virtual size: 1KB