4c1ed5adafff49258061615b68161721_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4c1ed5adafff49258061615b68161721_JaffaCakes118
Size

234KB
MD5

4c1ed5adafff49258061615b68161721
SHA1

df3564d4c91550f37ab38d9d7630101de20102fb
SHA256

fc0cbd05f34a7f4a5c933923ac556b7ea4f1edeaa97fb40c016092f39917011f
SHA512

cb1732a61989432a4a0ad43308be16d5b14b6c0751cf68a0d4ae11837b2dd9d194eace86b128747854bf7fada5f78b4b05df57ac20a9a5ade2f30889b07cea86
SSDEEP

6144:Cdp0QaCx5uwRXSHliUm2poT9FL7NUBYMVpnO1y7H:CdpxFx594OT938pVpmy7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c1ed5adafff49258061615b68161721_JaffaCakes118

Files

4c1ed5adafff49258061615b68161721_JaffaCakes118
.exe windows:5 windows x86 arch:x86

838d0b326c16029df358581759d3a7fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPixel
SetWindowExtEx
SetBitmapBits
GetTextExtentPointA
GetViewportOrgEx
StartDocW
GetTextAlign
CreateFontA
OffsetRgn
SaveDC
SetDIBColorTable
SelectPalette
BitBlt
SetDIBits
GetWindowOrgEx

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create

comdlg32

GetOpenFileNameW
ReplaceTextW
PrintDlgW

user32

InflateRect
GetDlgCtrlID
SetWindowLongA
ToUnicodeEx
GetClientRect
GetSystemMetrics
TranslateAcceleratorA
GetWindowTextA
GetUpdateRgn
AdjustWindowRect
SetScrollInfo
InSendMessage
AdjustWindowRectEx
ScreenToClient
wsprintfW
IsZoomed
RegisterClassA
GetNextDlgGroupItem
FindWindowA
SetSysColors
GetDC
SetWindowTextA
ShowScrollBar
GetMenuItemCount
EqualRect
GetKeyNameTextW
GetSubMenu
TrackPopupMenu
SetForegroundWindow
GetKeyboardLayoutNameW
ExitWindowsEx
CopyImage
GetScrollPos
OffsetRect
DrawFrameControl
CreateWindowExW

kernel32

GetVersion
LockResource
FreeLibrary
PulseEvent
GetBinaryTypeW
SetCommMask
EnumResourceLanguagesA
GlobalSize
SetFileApisToOEM
lstrcatA
GlobalMemoryStatus
IsBadStringPtrW
FindResourceExA
SetHandleCount
IsDBCSLeadByteEx
CreateDirectoryW

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

838d0b326c16029df358581759d3a7fb

Headers

File Characteristics

Imports

gdi32

comctl32

comdlg32

user32

kernel32

Exports

Exports

Sections

.text Size: 215KB - Virtual size: 214KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 3KB - Virtual size: 3KB

.vdt Size: - Virtual size: 106KB

.vsctn Size: 1KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 215KB - Virtual size: 214KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 3KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 106KB

.vsctn
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB