87117726d1e8c339ea9053a467d1e991_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

87117726d1e8c339ea9053a467d1e991_JaffaCakes118
Size

50KB
MD5

87117726d1e8c339ea9053a467d1e991
SHA1

895960cd32848883be279edf24bdf572cedecb2d
SHA256

82f8db87b42b47321649a625739d455cbe2b87f5c3dbff48ed0ca94549e979fe
SHA512

0bd005ba65761beb892da7caab15dd079edac505be2868c7042cf6dc58da8af9f15a5f844d3b23e90149074164c2bad7318c56a2cb21ddf0a0a78a2d9d3bd269
SSDEEP

768:1GApgXTbMoOk7X3worLW2Ow7JLquOmXe9YTkMOp3xNfVt:1GA+3MoOkjwCrOw7ZquOOe9skd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87117726d1e8c339ea9053a467d1e991_JaffaCakes118

Files

87117726d1e8c339ea9053a467d1e991_JaffaCakes118
.exe windows:5 windows x86 arch:x86

45111ff12280ed6c21c1a1725057e156

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
PrintDlgW
GetOpenFileNameW
GetSaveFileNameW

shlwapi

StrCatW
PathFindFileNameW
PathBuildRootW

user32

DestroyMenu
AdjustWindowRect
GetCaretBlinkTime
GetMenu
GetSystemMenu
GetWindowRect
HideCaret
OemToCharA
DestroyIcon
DrawMenuBar
RemovePropW
GetSubMenu
IsZoomed
FindWindowW

gdi32

CreateRectRgn
OffsetViewportOrgEx
ScaleWindowExtEx
PolyBezier
SetLayout
DeleteObject
CreateFontIndirectW
CreateFontA
GetTextExtentPoint32A
GetTextExtentPoint32W
SetBitmapDimensionEx

advapi32

GetUserNameW

kernel32

GetModuleHandleW
SetTimerQueueTimer
GetExitCodeProcess
LoadLibraryW
SetConsoleCP
SetErrorMode
ConvertDefaultLocale
ResetEvent
EnterCriticalSection
FindFirstChangeNotificationW
LoadLibraryExA
GetModuleHandleA
FoldStringW
GetOEMCP
SetThreadLocale

Exports

Exports

_PfeNsdevv_smavm@16
_GKuqtUoe_xpXksfPu@4
_NjUsfsmk_orndnxjjm@8
_Hyuhwcmw_abmlfXyce_aoE@16
_Olsowfjd_qrkKncQrU_oak@8
_Eodvufqv_jbtocu@16

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45111ff12280ed6c21c1a1725057e156

Headers

File Characteristics

Imports

comdlg32

shlwapi

user32

gdi32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 12KB - Virtual size: 40KB

.data Size: 3KB - Virtual size: 3KB

DATA Size: 9KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 12KB - Virtual size: 40KB

.data
Size: 3KB - Virtual size: 3KB

DATA
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 3KB - Virtual size: 3KB