5bf07566d7fa656f9990b9addc84e02f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5bf07566d7fa656f9990b9addc84e02f_JaffaCakes118
Size

111KB
MD5

5bf07566d7fa656f9990b9addc84e02f
SHA1

ed275ee40c9fcab87ecaa8ba5b2d4a9cd18706fe
SHA256

31a3cb3da8c90830228267ff314b4be14568704c3145b2001881212470206015
SHA512

5b447a0ba6c4dfe265111e6c9167f11a22523ae14b11177d3f232d758f19fdb36e626bce6bc4a899e1dc98ac21b3685361466ab8007b8d0a045c6adc5920a7b0
SSDEEP

1536:Ky6MRx/qlJQ8UsGYksCV+xnLT8hWuNR3hm2tofK3xmAuwEfdvj3Ag8pkkbu:Ky6MRZqs8HG7QLm5vhm9zAGfdjJi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bf07566d7fa656f9990b9addc84e02f_JaffaCakes118

Files

5bf07566d7fa656f9990b9addc84e02f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

31fc83328914650fd758f42d998fe4bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

V:\soIwaJI\yOHMtco\ocBjQf\iQmtzsrx\GVlLyb.pdb

Imports

shlwapi

StrCmpNW

user32

ShowWindowAsync
ActivateKeyboardLayout
DefFrameProcA
UnloadKeyboardLayout
GetPropW
SetRect
CreateIconIndirect
GetWindowLongW
SendMessageTimeoutA
SetDlgItemTextA
SystemParametersInfoW
ShowScrollBar
FindWindowA
IsCharUpperA

gdi32

GetTextExtentPointA
WidenPath
SetPaletteEntries
CreateBitmapIndirect
CreatePatternBrush
SetBkColor
GetTextAlign

kernel32

LoadLibraryW
GetComputerNameW
GlobalGetAtomNameA
CreateFileMappingW
CompareFileTime
GetFileAttributesA
WaitCommEvent
OpenFileMappingW
CreateNamedPipeW
GetProcAddress
lstrlenW
DefineDosDeviceW
lstrcmpiW

Exports

Exports

?wfgeGjcaEl@@YGPADM@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31fc83328914650fd758f42d998fe4bd

Headers

File Characteristics

PDB Paths

Imports

shlwapi

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.idata Size: 1024B - Virtual size: 968B

.edata Size: 512B - Virtual size: 89B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.idata
Size: 1024B - Virtual size: 968B

.edata
Size: 512B - Virtual size: 89B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB