4666716bd89a25d322db2277e8d1a3b0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4666716bd89a25d322db2277e8d1a3b0_JaffaCakes118
Size

218KB
MD5

4666716bd89a25d322db2277e8d1a3b0
SHA1

2f46a10afd56336e0774c273673795f023851cf3
SHA256

4dca051dc24df69639ab3baaf405544f0173d4944d489e35975ce0e6f26ed474
SHA512

66206450904b284c0b51e58066a683b71589d724c557dde20a5b8f7b8cd9a96436721fe736d6d88a10b94abb3184d731cef203954c1329065cc814e29d32cfd9
SSDEEP

6144:Pc0cmMO84aBvh2NoCW8rHEw5lV/C9/d4c:P6mz84ajZeLl69/n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4666716bd89a25d322db2277e8d1a3b0_JaffaCakes118

Files

4666716bd89a25d322db2277e8d1a3b0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1a7dc962a86a2d41b43950a4fa39d14d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InsertMenuA
IsCharAlphaW
EnumWindows
GetDC
GetClassLongA
ActivateKeyboardLayout
IsCharLowerA
MoveWindow
LoadIconW
SetForegroundWindow
GetWindowLongW
LoadAcceleratorsW
LoadAcceleratorsA
TileWindows
ShowWindowAsync
GetClassLongW
AllowSetForegroundWindow
DrawStateA
GetLastActivePopup
GetMenuItemID
GrayStringW
CreateDialogIndirectParamW
CreateMenu
IsCharUpperA
GetDlgItem
SetFocus
WindowFromPoint
InsertMenuItemW
EndDialog

gdi32

RectInRegion
GetTextExtentPointW
StartDocW
SetPixel
SelectClipRgn
ExtTextOutA
StartPage
CreateSolidBrush
CreateBitmapIndirect
RestoreDC
RoundRect
UnrealizeObject
PtVisible

kernel32

HeapLock
SetThreadLocale
SetEvent
CreateMutexA
GetOverlappedResult
MulDiv
ExitThread
AddAtomW
DisconnectNamedPipe
CreateThread
LocalAlloc
CopyFileW
GetComputerNameExW
LocalFree
WaitForSingleObjectEx
LoadLibraryExW

comdlg32

ReplaceTextW
GetSaveFileNameW
PrintDlgExW

Exports

Exports

?KJFDkljfljhUYDFuifUKYFlKFilFUYFUIh@@YGKEPA_WG@Z

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 34KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a7dc962a86a2d41b43950a4fa39d14d

Headers

File Characteristics

Imports

user32

gdi32

kernel32

comdlg32

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 68KB - Virtual size: 67KB

.mdata Size: 13KB - Virtual size: 13KB

.data Size: 34KB - Virtual size: 190KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 68KB - Virtual size: 67KB

.mdata
Size: 13KB - Virtual size: 13KB

.data
Size: 34KB - Virtual size: 190KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB