782c1965ccc14a45481228bfb07ca65e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

782c1965ccc14a45481228bfb07ca65e_JaffaCakes118
Size

174KB
MD5

782c1965ccc14a45481228bfb07ca65e
SHA1

142d91f5a91f5d500d049d50befd07ed9274b0f0
SHA256

b0c0bcfc0e4474e0464e1c269a3fd4fe2116030bd80d9053d3a9f4fd9ad43566
SHA512

74539f69d2e140b13f6be2c2d120cdd0ae595e015fbf4d139918ab77bd46ec8bddb1eeee912f59a9e2fe1d56bb4a6b02e7c39ab3c1bf7f758787fb8a30aef8e2
SSDEEP

3072:aC3sQS2/prGOWx5RfdNK1R9vIrE41SJFOfqqPT+66t/ZcmjPItsO3eH:aC42/p23+PIQ4YTOfqKWt/5PICO3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
782c1965ccc14a45481228bfb07ca65e_JaffaCakes118

Files

782c1965ccc14a45481228bfb07ca65e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

86434beaf756d5447dda89634fd273c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
CreateDIBitmap
GetColorSpace
GetBitmapBits
SetStretchBltMode
SaveDC
DeleteColorSpace
GetTextMetricsW
Ellipse

kernel32

CreateWaitableTimerA
lstrlenA
LoadLibraryW
UnmapViewOfFile
FindNextChangeNotification
lstrcpyA
SetLastError
FindFirstFileW
GlobalGetAtomNameW
GetCommandLineW
FindFirstFileA
LockFile
IsValidLanguageGroup
SetFileAttributesW

shlwapi

PathGetCharTypeA
PathGetArgsA

comctl32

CreateToolbarEx
ImageList_Remove

user32

GetWindowContextHelpId
ScrollWindow
GetWindow
GetWindowTextA
wsprintfW
AttachThreadInput
GetDC
LoadLocalFonts
LoadCursorA
AdjustWindowRect
EnumChildWindows
CharLowerA
GetForegroundWindow
DestroyCaret

ole32

CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoUninitialize

comdlg32

PageSetupDlgW
ChooseColorW
GetOpenFileNameA
GetOpenFileNameW

Exports

Exports

_Ijzhhmfb_nhnmomUkvn
_Zcyhazpn_eykZNr
_JlvfRptj_Qsxgqw
_Suzannrmx_coxchkma_ry
_Smnqomlr_jsriKqge

Sections

.itext
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INFO
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86434beaf756d5447dda89634fd273c6

Headers

File Characteristics

Imports

gdi32

kernel32

shlwapi

comctl32

user32

ole32

comdlg32

Exports

Exports

Sections

.itext Size: 10KB - Virtual size: 10KB

.text Size: 17KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 208KB

INFO Size: 127KB - Virtual size: 127KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 4KB - Virtual size: 4KB

.itext
Size: 10KB - Virtual size: 10KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 208KB

INFO
Size: 127KB - Virtual size: 127KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 4KB - Virtual size: 4KB