868fb596d520adf1bb0bbde66131aa82_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

868fb596d520adf1bb0bbde66131aa82_JaffaCakes118
Size

144KB
MD5

868fb596d520adf1bb0bbde66131aa82
SHA1

867e6535401b8d0a33a7e5a7419195b35c64843c
SHA256

af39dc6cc4e0c4962d562aab5a4ee0f150e9903c42b52dd7a7bea63c9e2d849f
SHA512

d8d946ee1655b241aefeba13d196c6576831dbf10b081c3d2ad35595b22750b310ebbca65b6feb5a1766d56e5609bc847c79e9e589e2487771a7a831877af32f
SSDEEP

3072:JEa4gf7Nr8CeVmPa83xP4Tc6QKJB4MyHWcv2:3467R8vVmPa8Z4gb3Zv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
868fb596d520adf1bb0bbde66131aa82_JaffaCakes118

Files

868fb596d520adf1bb0bbde66131aa82_JaffaCakes118
.dll windows:5 windows x86 arch:x86

14fa61f7fb03d22fe3a13c6ace1875ec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

CheckMenuRadioItem
GetMenuItemID
MoveWindow
TranslateAcceleratorA
GetDlgCtrlID
GetPropW
InflateRect
CascadeWindows
GetWindowLongW
DestroyAcceleratorTable
ShowScrollBar
DefFrameProcA

kernel32

FindNextFileA
CopyFileW
ClearCommBreak
SearchPathW
lstrcmpiW
WaitForSingleObject
lstrlenA
SearchPathA
SetThreadContext
SizeofResource
QueryPerformanceCounter
GetProcAddress
LoadLibraryW

shlwapi

StrCmpNA

gdi32

ExtFloodFill
CreateRectRgnIndirect
ExcludeClipRect
SetBkColor
GetDIBits
CreateFontA
GetDIBColorTable

Exports

Exports

?PeuqiinzqeoonyaZzzFiru@@YGHK@Z
?fdrmhaZuPpR@@YGPAJPAI@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 890B - Virtual size: 890B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 134B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14fa61f7fb03d22fe3a13c6ace1875ec

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.idata Size: 890B - Virtual size: 890B

.edata Size: 134B - Virtual size: 134B

.temp Size: 74KB - Virtual size: 74KB

.data Size: 17KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 17KB - Virtual size: 17KB

.idata
Size: 890B - Virtual size: 890B

.edata
Size: 134B - Virtual size: 134B

.temp
Size: 74KB - Virtual size: 74KB

.data
Size: 17KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB