629133675e31a647d8d41074554bfa22_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

629133675e31a647d8d41074554bfa22_JaffaCakes118
Size

286KB
MD5

629133675e31a647d8d41074554bfa22
SHA1

015c6bfce7b8d53c855558f65110fbaf9b15ba98
SHA256

247055586821da9339d37547dc4dd790df7f790b89ac28c9854b9103217359fa
SHA512

1b33d45d5e393ac2ea639f5e9cf24b0bf513291c2d7a41650fec05e0594f32d90bf0c8b71538282c5ea48a48661ae23969c85f38006c499045d127928204d369
SSDEEP

6144:fb3NUvfW43nmebh0ZvlztpFwWL+MgAJkV32J54Pme0QTvrrH3qG4B0J:fb3NUmamMOPFwWSAJkh2J54PmbQPrXqv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
629133675e31a647d8d41074554bfa22_JaffaCakes118

Files

629133675e31a647d8d41074554bfa22_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c0a288237da407f8c47cb909e93907bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\ntHtknShntYaL\Fqedweju\guuOxIwg\rboFlsFpg.pdb

Imports

ntdll

memcpy

kernel32

CreateFileW
GetLongPathNameW
GetModuleHandleA
lstrlenW
HeapValidate
IsDBCSLeadByteEx
FindResourceW
GetModuleFileNameA
CopyFileA
OpenEventW
SetCommBreak
SystemTimeToFileTime
lstrcpynA
GetExitCodeThread
EnterCriticalSection
FindFirstFileW
SetHandleCount
GetComputerNameA
TlsSetValue

gdi32

GetWindowOrgEx
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
ExtTextOutA
SelectPalette
GetTextCharsetInfo
GetClipBox
GetNearestPaletteIndex
CreateHatchBrush
GetTextExtentPoint32W
SetBkColor
PtVisible
Escape
CreateDiscardableBitmap
DeleteObject
GetTextColor
PolyBezier

comdlg32

ChooseColorW
GetSaveFileNameW
PrintDlgW
PrintDlgExW

user32

AdjustWindowRectEx
OemToCharA
SetWindowLongW
DrawStateA
GetSubMenu
SetSysColors
MessageBoxW
CharLowerA
FrameRect
GetKeyState
SendMessageTimeoutW
DispatchMessageA
wsprintfW
IsCharAlphaNumericW
BeginPaint
GetDC
TabbedTextOutW
GetDlgItemInt
IsIconic
GetSysColor
GetWindowTextLengthW
AttachThreadInput
SetMenuDefaultItem
ModifyMenuW
EqualRect
GetDlgCtrlID
WaitForInputIdle
IsWindowUnicode
AppendMenuA
OffsetRect
DrawFocusRect
GetFocus
ShowCaret
GetWindowDC
CreateDialogIndirectParamW
ChangeMenuW
GetShellWindow
CharToOemA

Exports

Exports

?KDFJHjhfuyUFuiuydyufds@@YGKEPA_WG@Z

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 151KB - Virtual size: 293KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0a288237da407f8c47cb909e93907bc

Headers

File Characteristics

PDB Paths

Imports

ntdll

kernel32

gdi32

comdlg32

user32

Exports

Exports

Sections

.text Size: 35KB - Virtual size: 34KB

data Size: 151KB - Virtual size: 293KB

.rsrc Size: 96KB - Virtual size: 96KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 35KB - Virtual size: 34KB

data
Size: 151KB - Virtual size: 293KB

.rsrc
Size: 96KB - Virtual size: 96KB

.reloc
Size: 2KB - Virtual size: 1KB