59df6b6a9aa8dc2080902f192f80b526_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

59df6b6a9aa8dc2080902f192f80b526_JaffaCakes118
Size

247KB
MD5

59df6b6a9aa8dc2080902f192f80b526
SHA1

849b59f0dda16c53acbc022bb7b3d618d87c74b5
SHA256

3bd806d89df6239b670d9df32ba235c99398a797a433eac48a053645209a2fba
SHA512

97f9f2cd378b8d4e6729a9707275ac7ebf780d6aa8211ff8254d647028ddeddb54616724fe4f6e208495e4d32f1a590a2d2a12143e7be971b513c4ac01dd8445
SSDEEP

6144:0cnRjPBhZvAZEraNRxUZ6+5m67dCbxrwUg:0cJXZTraNRxUZRdC1rwUg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59df6b6a9aa8dc2080902f192f80b526_JaffaCakes118

Files

59df6b6a9aa8dc2080902f192f80b526_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2a4668e709ef1d8d4c1de0bc06f12701

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AppendMenuW
LoadStringA
DragObject
CreateCaret
CharLowerBuffW
DrawMenuBar
SetScrollPos
PostMessageW
PostQuitMessage
CharLowerA
GetKeyboardLayout
CharNextExA
ToUnicodeEx
GetWindowTextW
CharLowerW
DefWindowProcA
DialogBoxIndirectParamA
BeginPaint
GetLastActivePopup
GetKeyboardType
InflateRect
SetWindowLongA
PostThreadMessageA
GetWindowTextA
GetKeyboardLayoutList
CharUpperA
BeginDeferWindowPos
DestroyMenu
SetClassLongW
GetMenuItemInfoW
GetDC
wvsprintfW
CallWindowProcW
SetWindowRgn
IsRectEmpty

gdi32

GetPaletteEntries
CreatePalette
SetPaletteEntries
BitBlt
ScaleWindowExtEx
SetTextColor
CreateDCW
DeleteObject
CreatePatternBrush
GetTextExtentPoint32W
DPtoLP
TextOutA
GetTextColor
GetTextMetricsW
GetCurrentPositionEx
SetDIBitsToDevice
SetViewportOrgEx
GetViewportOrgEx

kernel32

SetLastError
VirtualQuery
lstrcmpiA
QueryDosDeviceW
IsBadWritePtr
CompareStringW
AreFileApisANSI
SetEvent
SetTimerQueueTimer
GlobalCompact
lstrcmpA
GlobalFree
GetLastError
SuspendThread
GetSystemDefaultUILanguage
LocalReAlloc
GetTempPathA
GetLocaleInfoA

Exports

Exports

?JHFjhkfjlKLUJFiufiOUuifHLFJHlffgdgf@@YGKEPA_WG@Z

Sections

.text
Size: 153KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 1024B - Virtual size: 773B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a4668e709ef1d8d4c1de0bc06f12701

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 153KB - Virtual size: 153KB

.nfodat Size: 512B - Virtual size: 320B

.point Size: 512B - Virtual size: 320B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 15KB - Virtual size: 14KB

.temp Size: 1024B - Virtual size: 773B

.port Size: 14KB - Virtual size: 14KB

.rsrc Size: 57KB - Virtual size: 60KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 153KB - Virtual size: 153KB

.nfodat
Size: 512B - Virtual size: 320B

.point
Size: 512B - Virtual size: 320B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 15KB - Virtual size: 14KB

.temp
Size: 1024B - Virtual size: 773B

.port
Size: 14KB - Virtual size: 14KB

.rsrc
Size: 57KB - Virtual size: 60KB

.reloc
Size: 2KB - Virtual size: 1KB