94c645b20fed0aa8e99a7f3cd73558a4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

94c645b20fed0aa8e99a7f3cd73558a4_JaffaCakes118
Size

128KB
MD5

94c645b20fed0aa8e99a7f3cd73558a4
SHA1

5098db220869f8293d7e8a3d72d65c6137f00214
SHA256

1e8347d118e4f27caceb01869698c20cecb79b10c6717792eda26979fb34f421
SHA512

de43fe56fe890648bed0c6860dd7972b7f0b0ba509da2d1b287539ef05d0a3e329fa0de4345476d4f9d83cc809367d6a8b9fc79b92bf34302c6f109868427314
SSDEEP

3072:a1w+vE7WSSkOS2188/S07S8e6aDU9dL6j7RokYe:P+vE76kO1SIcauq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94c645b20fed0aa8e99a7f3cd73558a4_JaffaCakes118

Files

94c645b20fed0aa8e99a7f3cd73558a4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f63e47982ddf78c063fc50d75ebb9a9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\ViimtxeJ\HljkjbdrkU\tDMGmjd\kthsCUiw\xYmuzsuXtswvb.pdb

Imports

user32

SendDlgItemMessageA
SetMenuDefaultItem
RegisterClassA
CreateDialogParamA
GetDlgItemTextA
VkKeyScanW
UnionRect
ClipCursor
SetLastErrorEx
IsCharLowerA
ChangeMenuW
RemovePropW
IsCharAlphaW
EnableScrollBar
CharToOemBuffA
KillTimer
DeferWindowPos
GetDlgCtrlID
GetSystemMenu
LoadBitmapA
ShowCaret
CharLowerW
SetScrollRange
SetWindowTextA
SetDlgItemTextA
ExitWindowsEx
ShowWindow
GetKeyboardLayoutNameW
SetPropW
OpenInputDesktop
GetNextDlgTabItem
ReplyMessage
CreateDialogParamW
GetWindowLongW
GetMenuStringA
SetSysColors
InsertMenuW
MoveWindow
HideCaret
FindWindowW
GetMenuItemInfoW
EqualRect
EndDialog
OemKeyScan
SendMessageA
CharToOemW
GetScrollRange
DefDlgProcA
SetWindowRgn

msvcrt

__argc

kernel32

SetCurrentDirectoryW
CancelIo
GetFileAttributesA
HeapFree
LCMapStringW
MapViewOfFile
lstrlenA
GetUserDefaultLangID
DisconnectNamedPipe
LoadLibraryW
GetThreadLocale
FreeResource
CopyFileA
SetupComm
WriteFile
ReleaseSemaphore
CreatePipe
InterlockedFlushSList
GetExitCodeThread
GlobalMemoryStatus
GetLastError
IsDBCSLeadByte
GlobalAddAtomA
FindResourceA

advapi32

IsTextUnicode

ole32

CoUninitialize
CoInitialize

gdi32

SetROP2
CreateFontW
GetSystemPaletteUse
SetMapMode
GetPaletteEntries
SelectPalette
SetBitmapBits
GetTextExtentPointA
LPtoDP
ExtTextOutA
EndDoc
PathToRegion
CreateFontIndirectA
CreateHalftonePalette
RemoveFontResourceW
StartPage
GetBitmapBits
CombineRgn
GetObjectW
GetViewportOrgEx
SetBkColor
CreatePatternBrush

Exports

Exports

?LKJDJKkjDIUdiuIUDd@@YGPA_WPA_WKK@Z

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f63e47982ddf78c063fc50d75ebb9a9c

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

kernel32

advapi32

ole32

gdi32

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 47KB

.text Size: 13KB - Virtual size: 12KB

.data Size: 3KB - Virtual size: 2KB

.rdata Size: 20KB - Virtual size: 19KB

.rsrc Size: 42KB - Virtual size: 41KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 47KB - Virtual size: 47KB

.text
Size: 13KB - Virtual size: 12KB

.data
Size: 3KB - Virtual size: 2KB

.rdata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 42KB - Virtual size: 41KB

.reloc
Size: 1KB - Virtual size: 1KB