6adeb173db3975622307481e7be26265_JaffaCakes118

General

Target

6adeb173db3975622307481e7be26265_JaffaCakes118
Size

219KB
MD5

6adeb173db3975622307481e7be26265
SHA1

26dcd5fa8fc38a675b1b02519a383c3ae4ae9d66
SHA256

625d0e20d4ade29f953a6d49db3446f1cbc17fe7ea95e92a1d665993af108fe6
SHA512

31e7872fef254912e35cb607ad81abfb074e018bdf9d632345ac2d248bfb284d44ef98a72b38a768fda1379fba6aca5b2a921975b8aa573bef6816a142b36638
SSDEEP

6144:AR2ff8E9PKE2N0CqmEZGBg2syDRG9e9ZjLsVxZ:AR2nh25qmEjEDRkWFLsVxZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6adeb173db3975622307481e7be26265_JaffaCakes118

Files

6adeb173db3975622307481e7be26265_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2914ed3c78572c25f6ca86259f347499

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectPalette
CreateFontIndirectW
SetMapMode
GetTextExtentPoint32A
CreateFontIndirectA
SetDIBitsToDevice
SetTextColor
PtInRegion
PtVisible
IntersectClipRect
GetRgnBox
GetTextColor
CreatePen
GetObjectW
Ellipse
AddFontResourceW
PatBlt

user32

GetDC
DestroyCaret
IsCharAlphaA
GetClientRect
SetMenuItemBitmaps
CopyAcceleratorTableW
GetMenuItemInfoW
SwitchToThisWindow
SetMenuDefaultItem
GetMessagePos
IsMenu
GetUpdateRect
GetKeyboardLayout
DestroyWindow
SendNotifyMessageW
ChildWindowFromPoint
GetScrollRange
DrawStateW
DrawStateA
CharToOemBuffA
SetRect
CreateDialogIndirectParamW
InvalidateRect
SetDlgItemInt
AdjustWindowRectEx
CreateCursor
CreateDialogParamW
DrawEdge
GetMenuItemCount
IsWindow
CreatePopupMenu
DialogBoxParamA
CharUpperA
LoadStringA
OpenIcon
SystemParametersInfoW
SetMenuItemInfoW
GetSubMenu

kernel32

IsValidLocale
WriteFile
UnlockFile
SetFileAttributesA
GetCommandLineW
HeapUnlock
GetLocaleInfoA
DeviceIoControl
SystemTimeToFileTime
GlobalReAlloc
OpenSemaphoreW
GlobalGetAtomNameA
SleepEx
GlobalMemoryStatusEx
lstrlenA
GetUserDefaultUILanguage
GlobalMemoryStatus
LoadLibraryExW
GetOEMCP
MulDiv

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vsctn
Size: 74KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2914ed3c78572c25f6ca86259f347499

Headers

File Characteristics

Imports

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 125KB - Virtual size: 125KB

.data Size: 16KB - Virtual size: 16KB

.vsctn Size: 74KB - Virtual size: 199KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 125KB - Virtual size: 125KB

.data
Size: 16KB - Virtual size: 16KB

.vsctn
Size: 74KB - Virtual size: 199KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB