76189d4dd3784335829038c244982223_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

76189d4dd3784335829038c244982223_JaffaCakes118
Size

188KB
MD5

76189d4dd3784335829038c244982223
SHA1

7c725db9041ea9c47895ae08dd8b07261a59e1ea
SHA256

1f47d221cfb268ac31c0bd6ea893d205b818987a1529127af4793e3c1f509a92
SHA512

9f79205be869eb28f79fb0a04d6ad1d10456e3222f7e060f6b5e653a820656016c7c1d8f3039d7e2c084219088d5c8730588aaa2808726f3ad1e6a4ea35289d6
SSDEEP

3072:jzD6kygw6yDEMdR8tVZnZspAQuJ/Po2vUM48a4kWDrguBPgEuzdBbCV/b3:u5HqtVLrQKXZ4XH+ES4Euza

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76189d4dd3784335829038c244982223_JaffaCakes118

Files

76189d4dd3784335829038c244982223_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ab678b158c812f54f73561ab8b650022

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\tAtHKsz\hlll\vaihcahR\zMxT.pdb

Imports

ntdll

_aullrem

comctl32

PropertySheetA
CreatePropertySheetPageW
ImageList_GetIcon

comdlg32

ChooseColorW
GetOpenFileNameW

gdi32

CreateDIBitmap
PtInRegion
PolyBezier
SetBrushOrgEx
OffsetViewportOrgEx
StretchDIBits
CreateDiscardableBitmap
Polygon

kernel32

GetDateFormatA
lstrcmpiW
GetProcAddress
SearchPathA
GetModuleHandleW
CopyFileW
HeapFree
lstrlenW
GlobalMemoryStatusEx
FindResourceExA
GetSystemDefaultLangID
ResetEvent
ExitThread

user32

GetUpdateRgn
CharLowerA
CharLowerBuffW
ArrangeIconicWindows
FindWindowExW
EnableWindow
ModifyMenuW
SetMenuItemInfoW
CascadeWindows
LoadIconW
GetWindow
DestroyCursor
SetScrollRange
GetScrollPos

Exports

Exports

?NsqyheSgB@@YGHDD@Z
?mLxuMZaRfbdq@@YGXDN@Z
?lAnuaiJFEDfnvz@@YGPAXFPAD@Z
?dHpubjnyUknrwmkTigtuz@@YGPAGPAMPAF@Z

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 207B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 142KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab678b158c812f54f73561ab8b650022

Headers

File Characteristics

PDB Paths

Imports

ntdll

comctl32

comdlg32

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.edata Size: 512B - Virtual size: 207B

.data Size: 142KB - Virtual size: 210KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 27KB

.edata
Size: 512B - Virtual size: 207B

.data
Size: 142KB - Virtual size: 210KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB