712e36e108d657f0e9510287c08c9350_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

712e36e108d657f0e9510287c08c9350_JaffaCakes118
Size

230KB
MD5

712e36e108d657f0e9510287c08c9350
SHA1

ce1410ddf8437f56aef9b3e5a85964b9a1efc6b6
SHA256

eaa5dd3f41e0be1781f249793f3f97d5067283309deee3f32b6c6225d88cb49e
SHA512

25d437e858ac0e04bea6fb4971ba5c122b7577abdd0ec2606cba8f4921e11bf9581b268aa1e094f04c54a248eb2922107ea4bb352b147ad47f3fcec365023ec9
SSDEEP

3072:Cpgdxc5I61R3yjFlS6N+sWI8xhHHxsw+7FAo/LSjxVz7DyK+ko3Yoc2T5BqeWDuG:Zxc5ziBeVy1wz7eKJo3YIBqeWDf

Score

1^/10

Malware Config

Signatures

Files

712e36e108d657f0e9510287c08c9350_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fc4e79a054354652ad186542611740f6

Code Sign

57:1b:1a:95:a8:0f:f1:55:76:c5:fc:8c:f7:89:20:18:72:6a:b5:4f
Signer

Actual PE Digest

57:1b:1a:95:a8:0f:f1:55:76:c5:fc:8c:f7:89:20:18:72:6a:b5:4f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

S:\dlsntdAa\ptqkyOb\FyrdSDnVfbV\fnfWzpzlda.pdb

Imports

msvcrt

_controlfp
atoi
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
_ismbblead
_wtoi
_XcptFilter
_exit
setlocale
_cexit
__setusermatherr
memset
__getmainargs

kernel32

lstrcpyW
GetModuleFileNameA
GlobalFindAtomW
GetCommandLineA
lstrcpyA
GetModuleHandleA
RemoveDirectoryA
EnumResourceNamesA
GlobalAlloc
lstrlenA
LoadLibraryA

shlwapi

ChrCmpIW
UrlEscapeA

user32

CreateIconIndirect
GetMenuStringW
CharToOemA
GetWindowDC
SetWindowTextA
DialogBoxIndirectParamW
LoadIconA
SetDlgItemInt
SetRect
SetRectEmpty
SetFocus
IsCharAlphaNumericW
SetWindowTextW
IsCharUpperW
LoadStringA
wsprintfW
TranslateMessage

gdi32

RoundRect
GetObjectA
GetTextExtentPoint32A
GetTextExtentPointW
GetPaletteEntries
GetROP2

Exports

Exports

?CreateDlgMessage@@YGHPAXPADK|U

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ort
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 197KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fc4e79a054354652ad186542611740f6

Code Sign

57:1b:1a:95:a8:0f:f1:55:76:c5:fc:8c:f7:89:20:18:72:6a:b5:4fSigner

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

shlwapi

user32

gdi32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.ort Size: 2KB - Virtual size: 2KB

.data Size: 197KB - Virtual size: 360KB

57:1b:1a:95:a8:0f:f1:55:76:c5:fc:8c:f7:89:20:18:72:6a:b5:4f
Signer

.text
Size: 27KB - Virtual size: 27KB

.ort
Size: 2KB - Virtual size: 2KB

.data
Size: 197KB - Virtual size: 360KB