8df6283cc0e974663781f8ef8ef1236d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8df6283cc0e974663781f8ef8ef1236d_JaffaCakes118
Size

169KB
MD5

8df6283cc0e974663781f8ef8ef1236d
SHA1

12938691f8c08df439a6e8731989da0129c7c260
SHA256

80d13c36f8d361456a4a439b4dbb224cf7a2e4a32837ea1f3617bc9794ece442
SHA512

5740f5f06ad4813f2e2627d960787c9583b4151495ba09728e828f0e6e43fddabc0593c298a8227c5c5e95a3d570f50d2f47afce62c12290287e0f8402a5f144
SSDEEP

3072:FT8RmH5tlLKCzv9rUPZRVQaMnEmVMS2g15W+yJjlcJtIev7wWxnv81AypkycI8:B8RkbFlyzoVp15rdJn7Tv2AFycp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8df6283cc0e974663781f8ef8ef1236d_JaffaCakes118

Files

8df6283cc0e974663781f8ef8ef1236d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5ab6015d12df28e356569e47630280b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\mxEcjLzsvlRew\lxAscxhSI\GsjldLcvuaqbp\dabezolruUzykt.pdb

Imports

comctl32

ImageList_GetImageCount
ImageList_Read
PropertySheetA

kernel32

TlsSetValue
lstrcpyW
GetSystemDirectoryW
SetupComm
ExitThread
GetTickCount
lstrcmpiW
LocalSize
lstrcatA
VerifyVersionInfoW
GlobalAddAtomW
ReleaseMutex
GetStdHandle
VirtualAlloc
GetComputerNameW

msvcrt

exit

shlwapi

UrlGetLocationA

user32

DialogBoxIndirectParamA
LoadBitmapW
SwitchToThisWindow
CreateDialogParamA
RedrawWindow
ClipCursor
InSendMessage
ShowCaret
TrackPopupMenuEx
GetDialogBaseUnits
DialogBoxParamW
GetTopWindow
GetAsyncKeyState
RegisterWindowMessageW
SetParent
SetSysColors
IsRectEmpty
IsDialogMessageW
GetWindowLongA
GetWindowTextW
mouse_event
LoadStringW
InternalGetWindowText
DestroyCursor
SetDlgItemTextA
CharLowerBuffA
MoveWindow
AttachThreadInput

gdi32

GetWindowOrgEx
CreateHalftonePalette
GetObjectW
SelectClipRgn
SelectObject
EndDoc
Ellipse
SetBkColor
CreateDIBitmap
SetDIBitsToDevice
GetTextCharsetInfo
SaveDC

Exports

Exports

?_qSQ__JutKKXRGNUO##YGKE@Z

Sections

.text
Size: 139KB - Virtual size: 416KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.form1
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.form2
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.form3
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.form4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.info
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ab6015d12df28e356569e47630280b4

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

msvcrt

shlwapi

user32

gdi32

Exports

Exports

Sections

.text Size: 139KB - Virtual size: 416KB

.itext Size: 512B - Virtual size: 264B

.edata Size: 512B - Virtual size: 144B

.data Size: 2KB - Virtual size: 2KB

.form1 Size: 512B - Virtual size: 80B

.form2 Size: 512B - Virtual size: 320B

.form3 Size: 512B - Virtual size: 320B

.form4 Size: 2KB - Virtual size: 1KB

.info Size: 13KB - Virtual size: 13KB

.rsrc Size: 7KB - Virtual size: 8KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 139KB - Virtual size: 416KB

.itext
Size: 512B - Virtual size: 264B

.edata
Size: 512B - Virtual size: 144B

.data
Size: 2KB - Virtual size: 2KB

.form1
Size: 512B - Virtual size: 80B

.form2
Size: 512B - Virtual size: 320B

.form3
Size: 512B - Virtual size: 320B

.form4
Size: 2KB - Virtual size: 1KB

.info
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 7KB - Virtual size: 8KB

.reloc
Size: 1KB - Virtual size: 1KB