4d77ceb3087cf659b3e30e83d3d0f698_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4d77ceb3087cf659b3e30e83d3d0f698_JaffaCakes118
Size

1.2MB
MD5

4d77ceb3087cf659b3e30e83d3d0f698
SHA1

89d6e99d246d6b244ca38684c5839d19dca11b0c
SHA256

7e150871b5d702b0c4f1b34773463afa3c82543fa2d91d44c474f60bbe5de794
SHA512

3a82b944a950a692ae49d3454dea491cc0644fd5e5933d54533e79352350423e2f0806c0474e781d3026132121517ec6486e38ce22831c54c950890a8ae0deef
SSDEEP

24576:GTGa67But8p6lz2FYbVUhPrjUe9MZYhTqyqMv+8PNV0t:0GHut8YuOMr4uMygtj8P8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d77ceb3087cf659b3e30e83d3d0f698_JaffaCakes118

Files

4d77ceb3087cf659b3e30e83d3d0f698_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7fcf698d98fee688f7336ed51346d8f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
SetScrollRange
GetClassInfoW
GetMonitorInfoW
GetScrollRange
GetClassInfoExW
CharUpperBuffA
AdjustWindowRect
ReleaseDC
CharNextA
HideCaret
TabbedTextOutA

msvcrt

isxdigit
sprintf
fputws
wcstombs
strspn
perror

comdlg32

ChooseFontW

gdi32

CreateCompatibleDC
CreateBrushIndirect
CreateRectRgnIndirect
GetMapMode
SetROP2
GetTextFaceW

kernel32

GetPriorityClass
SetFileAttributesA
SetFilePointer
GetModuleHandleW
GetShortPathNameA
lstrlenW
OutputDebugStringA
RegisterWaitForSingleObject
CreateRemoteThread
SetStdHandle
CopyFileA
FindResourceW

winspool.drv

DeletePrinterConnectionA

Exports

Exports

_Puetjsux_idemZd@12
_Srzaneyg_lohyq@16
_XimgxSns_fginGpm@4
_FuoqoffVg_y@16
_Qgmasfno_ond@16

Sections

.icode
Size: 512B - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vars
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.base
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fcf698d98fee688f7336ed51346d8f5

Headers

DLL Characteristics

File Characteristics

Imports

user32

msvcrt

comdlg32

gdi32

kernel32

winspool.drv

Exports

Exports

Sections

.icode Size: 512B - Virtual size: 6.1MB

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 2KB - Virtual size: 2KB

.vars Size: 1024B - Virtual size: 1024B

.base Size: 1024B - Virtual size: 720B

.data Size: 1KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 1.1MB - Virtual size: 1.1MB

.reloc Size: 5KB - Virtual size: 5KB

.icode
Size: 512B - Virtual size: 6.1MB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 2KB - Virtual size: 2KB

.vars
Size: 1024B - Virtual size: 1024B

.base
Size: 1024B - Virtual size: 720B

.data
Size: 1KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 1.1MB - Virtual size: 1.1MB

.reloc
Size: 5KB - Virtual size: 5KB