5db270ebfb01a37c58a2238334a64121_JaffaCakes118

General

Target

5db270ebfb01a37c58a2238334a64121_JaffaCakes118
Size

269KB
MD5

5db270ebfb01a37c58a2238334a64121
SHA1

0599eb8d1c286174f0bc5922e67b59273eb4e623
SHA256

8984df4aa87a8253c242a917be27983b8d154f3562c26173b6b5835d9cd7d2c5
SHA512

e6fb3fcaa53b7b70345cdb99af8b96edd550d15c6c3055b2cd0953367a51ab2375550fe204375a20d88e541ea59a73ade12b8bdbc9977c2d104e24c9e901bf44
SSDEEP

6144:HZLohvbCs/YvkbpJmSQAQarRZ8W06JK1RKkm:loh2QYvOpEOVZ8W06JeRKk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5db270ebfb01a37c58a2238334a64121_JaffaCakes118

Files

5db270ebfb01a37c58a2238334a64121_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0bbb8cd163db9e78cffb94b45ccea6d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetKeyboardLayoutNameW
ReplyMessage
IsZoomed
GetScrollInfo
SystemParametersInfoW
EndPaint
GetMenuItemCount
LoadBitmapA
GetDC
MapDialogRect
ScrollWindow
DefFrameProcA
DrawStateW
GetMessageExtraInfo
LoadMenuW
IsCharAlphaW
GetNextDlgTabItem
GetWindowTextA
DefFrameProcW
GetMenuState
PostThreadMessageW
GetWindowPlacement
SetForegroundWindow
EnumChildWindows
ArrangeIconicWindows
IsRectEmpty
ToUnicodeEx
GetDCEx
OpenDesktopW
InternalGetWindowText
DrawTextA
GetSysColor
DispatchMessageW
CharUpperBuffA
AppendMenuW
MessageBoxA
GetSystemMetrics
RegisterClassExW

kernel32

HeapSize
lstrcmpiW
OpenSemaphoreW
GetProcAddress
HeapFree
TlsFree
LoadLibraryA
IsValidLanguageGroup
GetTempPathA
SetErrorMode
CancelIo
FlushFileBuffers
EscapeCommFunction
GetLocalTime
SetPriorityClass
CompareFileTime
lstrlenW
FormatMessageW

gdi32

PtVisible
RestoreDC
RealizePalette
GetCurrentPositionEx
RoundRect
GetPaletteEntries
GetSystemPaletteUse
GetTextExtentPoint32A
CreateHalftonePalette
GetStockObject
CreateDIBitmap
SetBrushOrgEx
SetTextColor
CreatePalette
SetBkColor
GetDIBits
MoveToEx
CreateFontIndirectW

comdlg32

ChooseFontW
GetSaveFileNameA
ChooseColorW
PrintDlgW

ntdll

memcpy

Exports

Exports

?UDIuJHFhjHJJHFiufYIFYiuyfd@@YGKEPA_WG@Z

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0bbb8cd163db9e78cffb94b45ccea6d6

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comdlg32

ntdll

Exports

Exports

Sections

.text Size: 167KB - Virtual size: 167KB

data Size: 18KB - Virtual size: 17KB

.rsrc Size: 81KB - Virtual size: 84KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 167KB - Virtual size: 167KB

data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 81KB - Virtual size: 84KB

.reloc
Size: 2KB - Virtual size: 1KB