96657931e7efd1053c232994ad2debc7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

96657931e7efd1053c232994ad2debc7_JaffaCakes118
Size

142KB
MD5

96657931e7efd1053c232994ad2debc7
SHA1

c3a16f69c734a41d696340139eec6e51c41af18f
SHA256

82c323eb64189db6bf7aac0e0218f445263dd9da05098fcc3ccc12fba73f593b
SHA512

0658f983be99d3ba2b45cef549e6fbad434443d261dc82b1c8a6ff3a8f3a6dd537e2f0c59afd588d9b6ed395e2c45de116bb31b03c695aaa6092c25811f983ae
SSDEEP

3072:zVSFHCoO6Bd41zp4YlUy8HkadSJ2AEADu:4K54YlUh1a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96657931e7efd1053c232994ad2debc7_JaffaCakes118

Files

96657931e7efd1053c232994ad2debc7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c16167547888c4ed8bd4997805407655

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

V:\sudSsdxvjifgmpuCa\zreuhTgGhzslpLtpIYkgD\vLjfKnfusjqnMfuobsoe\LzBjZxegqGzgtN\IIGqXEwrrkpgnjzcApHvc\uIdvlKaoijyLbbogwenfv\BCexrundQkeTznu\lsfedRTipwxh.pdb

Imports

ntdll

memset

shlwapi

UrlGetPartW

user32

EndPaint
GetMenu
GetParent
GetWindowLongA
CharToOemBuffA
DrawIcon
DefDlgProcA
GetKeyNameTextW
GetSystemMenu
EnumChildWindows
GetMonitorInfoW
GetKeyboardLayoutList
ShowWindowAsync
GetClassInfoW
CharNextW
AppendMenuA
LookupIconIdFromDirectory
wvsprintfW
ChildWindowFromPointEx
IsIconic
CallWindowProcA
SystemParametersInfoA
OffsetRect
SetSysColors
GetDCEx
IsCharAlphaNumericW
DrawFocusRect
InSendMessageEx
SetRect

kernel32

lstrlenA
GetDateFormatW
lstrlenW
TransactNamedPipe
SetCommMask
lstrcatA
ReleaseMutex
FileTimeToLocalFileTime
UnlockFile
SetThreadAffinityMask
GetFileSize
DeleteFileW
CompareStringW
UnmapViewOfFile
GetUserDefaultLangID
GetModuleFileNameA

gdi32

GetSystemPaletteEntries
GetTextExtentPoint32A
CreateDIBitmap
StretchDIBits
CreateEllipticRgnIndirect
BeginPath
LPtoDP
TextOutW
LineDDA
CreateBrushIndirect
GetNearestColor
GetObjectA
GetWindowOrgEx

Exports

Exports

?htlvbmpauJGKSE_PKT_@@YGXF@Z
?VNJ_ECXPSPmo__e_b@@YGIDG@Z
?k_skny_g_sbka_f__v@@YGPAEG@Z
?M_TFC_Gr_m@@YGJPAI@Z
?__z_jtlcjHX@@YGPAID@Z
?_eoWXOrqn_@@YGXHK@Z
?_GHThzqfFNicsc_lls@@YGKJ@Z
?____D_FACX_u@@YGIIK@Z
?QI_CVDRQ_R_ni@@YGXK@Z
?qztu__ibvk_lpp__@@YGKMI@Z
?_QKAEMAvztrxumcaCF_@@YGXNPAJ@Z
?_UYp_pbtwJOO_mlive@@YGPAGH@Z
?_ctpd__t_ipoMLC@@YGKMN@Z
?NKO__MXOSsvpskjioeWKDX@@YG_NKG@Z
?_GSHONOZ@@YGPAXPAE@Z
?HILgfujSVA@@YGD_N@Z
?g__cvlsct__BBJ_@@YGHPAHD@Z
?o_zb_oaN_RJBUrm_mu_@@YGHE@Z
?yqcybIWLRtf_td_@@YGPAGPAJ@Z
?hh_k_wnXAU@@YGGG@Z
?tvvu_E_WMP_Dcm_@@YGGPAHPAG@Z
?Qnrttfqr_d@@YGXG@Z
?F_EUDSmqneelrlezXP@@YGGFPAK@Z
?_vwesphlH@@YGEI@Z
?WKHKOYq_eZQG@@YGPAKDF@Z
?ZUROJ_bjn@@YGIKE@Z
?OpcecAW_J_Q_c_hrV_OU@@YGPAXDPAF@Z
?SRSokeU@@YGMPAJ@Z
?BGO__LK_vvu_am_nacJ@@YGKDPAI@Z
?FVCDUE_JBJDFPZ@@YGDGJ@Z
?DAO_YSB_ks_@@YGPAEK@Z
?DKDBIRC_ZKQCH@@YGDPAD@Z
?qOY_KopqwvwilLJ@@YGPAIED@Z
?ZzkZ_LUOCL_HHKQ@@YGEPAF@Z
?MOVW__MWMyq_yo_@@YGMEN@Z
?fhxpgyGCP_@@YGEPAI@Z
?k_y_g_cw_o@@YGHDPAN@Z
?UXKURMFAQP_tM_OJ__Pv_@@YGNK@Z
?RACOHIRHBIJ_HAFU_@@YGXE@Z
?GVlb_tAETJSG__@@YGXJ@Z

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 475B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c16167547888c4ed8bd4997805407655

Headers

File Characteristics

PDB Paths

Imports

ntdll

shlwapi

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 512B - Virtual size: 475B

.idata Size: 10KB - Virtual size: 9KB

.data Size: 34KB - Virtual size: 189KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 512B - Virtual size: 475B

.idata
Size: 10KB - Virtual size: 9KB

.data
Size: 34KB - Virtual size: 189KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 2KB