838ebebc70e143a588dea3b6015b0836_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

838ebebc70e143a588dea3b6015b0836_JaffaCakes118
Size

113KB
MD5

838ebebc70e143a588dea3b6015b0836
SHA1

c3bc6254d8685f72fa8e23eb2a651d471748adfb
SHA256

2e03e3e69fc5f00e08a6700f21b81d9d0c96eb8857a74aeb6502e30931ee16c5
SHA512

8679e5dad1c94669234ce22761a0e7c73134a7cde13793305ac48bb02e63d8ad730abf0239ad9eb754a3b8a00af1d85432a953a34ca6e71f5122f77848956cf8
SSDEEP

1536:z4XKrvcRXJPmSCh9ZR8UKOaIiQHpGNfKFVHQbrVjcHD8ZuBa3ZcKkAgyiTg:zvr8XJPxORiQJK8HQPBwHYcKYyiT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
838ebebc70e143a588dea3b6015b0836_JaffaCakes118

Files

838ebebc70e143a588dea3b6015b0836_JaffaCakes118
.dll windows:5 windows x86 arch:x86

9b7d6fbc0f2c1481d8d4623f30b79e2e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Q:\hHoxwqW\xDiee\fdBiLwu\SowxYGwN.pdb

Imports

gdi32

LPtoDP
GetSystemPaletteEntries
CreateBitmapIndirect
CreateFontA
SetBitmapBits
EnumFontFamiliesExW
Polygon
CreateDIBitmap
SetViewportExtEx

kernel32

lstrlenW
lstrcmpiW
LCMapStringW
SetHandleCount
GetFullPathNameW
OpenEventA
LoadLibraryW
GetFileAttributesA
IsValidLanguageGroup
GlobalGetAtomNameW
GetSystemDefaultLangID
SetPriorityClass
GetProcAddress
GlobalMemoryStatus

user32

GetKeyboardLayoutNameW
IsCharUpperA
IsDialogMessageW
TranslateAcceleratorW
InvertRect
SendMessageA
ShowScrollBar
GetPropW
LoadMenuW
LookupIconIdFromDirectory
GetWindowLongW
CreateDialogIndirectParamW
MessageBoxA

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
PrintDlgW

shlwapi

StrCmpNW

Exports

Exports

?AapjhsKqmhkWAWuumfaty@@YGJPAEI@Z
?aCgqxUuldtw@@YGPAIPADH@Z
?WiSygvgpnSq@@YGMJ@Z
?wZoQOuetsiexXDph@@YGEFE@Z

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 205B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b7d6fbc0f2c1481d8d4623f30b79e2e

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

user32

comdlg32

shlwapi

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 205B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 205B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB