81fed418499645b4418bfaf1689a710c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

81fed418499645b4418bfaf1689a710c_JaffaCakes118
Size

115KB
MD5

81fed418499645b4418bfaf1689a710c
SHA1

ad2a985e928b297b9f392613dc935de79c674f29
SHA256

49432a413082afb13833c0a4b3e9bc858764b7c728d6e0bd002aa66bdb9b11b0
SHA512

78b2ea64814065ebaf93c7b33aa543ac1705c2244a18ed237a2071e7ea761ea47e2fd37e908e1bcd1837f025229fdb9a3c94b0f68e51bb69a794cd2ff9ed01fb
SSDEEP

3072:J8612GhD5dcsctLMHWfzG6sUA4j+bMVr:a224gsWLMHEzGj9ZA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81fed418499645b4418bfaf1689a710c_JaffaCakes118

Files

81fed418499645b4418bfaf1689a710c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eaaadff170b2d337e58eff913097fa45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateIcon
ReleaseCapture
IsDialogMessageA
RegisterClipboardFormatA
ChildWindowFromPoint
GetMenu
GetKeyboardLayoutList
SetCursor
GetClassNameA
SetWindowsHookExA
CharUpperBuffA
InvalidateRect
IsZoomed
DispatchMessageW
BeginPaint
PostQuitMessage
UpdateWindow
GetClientRect
DefFrameProcA
PostMessageA
DrawTextA
InsertMenuA
ScrollWindow
GetKeyboardState
ShowOwnedPopups
GetWindowDC
GetKeyboardType
GetIconInfo
EnumChildWindows
TranslateMessage
GetKeyState
CheckMenuItem
SendMessageW
RemovePropA
CharNextW
LoadStringA
SetCapture
RegisterWindowMessageA
DrawIcon
SendMessageA
AdjustWindowRectEx
DestroyCursor
DestroyWindow
GetClassLongA
UnregisterClassA
SystemParametersInfoA
TranslateMDISysAccel
GetScrollPos
ScreenToClient
SetForegroundWindow
GetSysColorBrush
GetSubMenu
IsIconic
IsDialogMessageW
DrawAnimatedRects
GetForegroundWindow
SetMenu
SetActiveWindow
SetScrollInfo
CreatePopupMenu
LoadBitmapA
EnableWindow

kernel32

ExitProcess
GetCommandLineA
LoadLibraryA
GetCurrentThreadId
VirtualAllocEx
GetCurrentProcessId

Exports

Exports

_ABaddcjaELzR4
_MpshMNGqi1O@4
jGRd4UtnWe9NO
_4AGahfPaWg_F@8
_snb2Pqey4q
nzA5CaG79L@16
QLFNAcnq2tv7b1
pamOjA9zFYwjvv@4

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

eaaadff170b2d337e58eff913097fa45

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 99KB - Virtual size: 211KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 99KB - Virtual size: 211KB

.rsrc
Size: 5KB - Virtual size: 4KB