5cce36eb8b7a41e1c151a4a5378f1190_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5cce36eb8b7a41e1c151a4a5378f1190_JaffaCakes118
Size

112KB
MD5

5cce36eb8b7a41e1c151a4a5378f1190
SHA1

e0bf70f9d3c0a278d39fc44dc56c1fdf4bb4b6aa
SHA256

a64c5b540b2dd51d7e9c0fd584394a76ec8bcd9064565523274a69daa2712905
SHA512

7227600235e663364ce88a84293ad7a859f9ad094ef79f4bbe47f33a5df17fd7617f9ea11c6683958eae44ac6f2dae14982a84d80821a6fd12ed59500bec409d
SSDEEP

1536:w3UXnvbMXpn9PRzURCLffdA3yfoh7szbZdIF1gIvKcfBpXkWNQMnFMuw5k6GkAge:j/bCpnbURuXiyf6Zp9N/AGYIsTFG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cce36eb8b7a41e1c151a4a5378f1190_JaffaCakes118

Files

5cce36eb8b7a41e1c151a4a5378f1190_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1cdbd8024323e27fe4be906d5c70a34c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\DkCgSnk\Piha\yglcdzEW.pdb

Imports

user32

CharNextExA
GetKeyNameTextW
MapVirtualKeyA
GetSystemMenu
GetDlgItem
IsCharUpperA
ShowScrollBar
LoadStringW
GetWindowLongW
GetPropW
GetForegroundWindow
WaitForInputIdle
ClipCursor

shlwapi

StrCmpNW

comctl32

ImageList_Write
CreatePropertySheetPageA
CreatePropertySheetPageW

kernel32

GetFileAttributesExW
lstrlenW
GetLocalTime
GetCurrentThreadId
lstrcmpiW
GetProcAddress
FindNextFileA
OpenFile
LocalReAlloc
GetStringTypeExW
LoadLibraryW
GetUserDefaultLangID
GetFileType
GetTempPathW

gdi32

CreateHalftonePalette
Ellipse
PatBlt
GetCharWidth32W
OffsetRgn
CreateBrushIndirect
CombineRgn
ResizePalette
GetDeviceCaps

Exports

Exports

?amdfyXnoWeMiLVkIa@@YGPAXF@Z
?wAixHpurnUpxYKxNBSb@@YGFF@Z
?yXiTnrUomGgoeD@@YGMPAIN@Z

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 172B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cdbd8024323e27fe4be906d5c70a34c

Headers

File Characteristics

PDB Paths

Imports

user32

shlwapi

comctl32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 172B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 172B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB