7699139809e10f3838c86db8458a2004_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7699139809e10f3838c86db8458a2004_JaffaCakes118
Size

112KB
MD5

7699139809e10f3838c86db8458a2004
SHA1

dda5060b8b22032c33017e8509adffb0eec39a3c
SHA256

c047208426d29dd86e98f7563cd953c24ec0a5f647cb22ad3a5f0a3dae76d77c
SHA512

b43184a54dcd7cbb7670d5e17110e455664ca0cd524e80bf18a13a681f05b0546a22aa6ca6d3cedba48c21847c28fe4eeeb5a4c3e889ac10caf1f9ca89825e27
SSDEEP

1536:8Xlw0CzAumS0HiaS10Ri/eeTBaOAbp0ztFaGp/tFxtUrCl0bd2SWMg0CpxAg+c:glKABnzAr8OA1kFaGpFPtZl0J2d+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7699139809e10f3838c86db8458a2004_JaffaCakes118

Files

7699139809e10f3838c86db8458a2004_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9c443b1ccff6f5f7cee9826a1ec15d1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\rwaey\xycwfze\Qzort\xjXkknQa\lhxP.pdb

Imports

gdi32

SetBkColor
CreateRoundRectRgn
GetDIBColorTable
GetRgnBox
CreateFontIndirectA
CreateEllipticRgnIndirect
GetBitmapBits

kernel32

lstrcpyA
LoadLibraryW
HeapCreate
GetProcAddress
lstrlenW
ExitThread
FindClose
lstrcmpiW
SetCurrentDirectoryW
LocalUnlock
CreateFileMappingA
GetFileSize

user32

TranslateMessage
DispatchMessageA
ShowScrollBar
CharUpperA
CharUpperBuffW
IsWindowVisible
GetWindowLongW
LoadCursorW
IsCharUpperA
DrawTextW
CharPrevA
GetPropW

shlwapi

StrCmpNW

comctl32

CreateStatusWindowW
ImageList_GetIcon
PropertySheetW

Exports

Exports

?wxqawfupMRax@@YGPADHPAF@Z
?cQfhhwQoRkyphjc@@YGIM@Z
?xhrmemxlegvcah@@YGXPAHPAF@Z
?yNbOOumaYLfcqrf@@YGMKE@Z

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c443b1ccff6f5f7cee9826a1ec15d1e

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

user32

shlwapi

comctl32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 18KB

.idata Size: 1024B - Virtual size: 952B

.edata Size: 512B - Virtual size: 204B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.idata
Size: 1024B - Virtual size: 952B

.edata
Size: 512B - Virtual size: 204B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB