a22260b0a5346567afbc1a277d2fd8dd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a22260b0a5346567afbc1a277d2fd8dd_JaffaCakes118
Size

79KB
MD5

a22260b0a5346567afbc1a277d2fd8dd
SHA1

7591954c5d0ec761da58177c30b710be384c5e45
SHA256

e06bfb90384ad0a97df3ac7b2125c97909ddd2de221b2a350c4886b9aedff81b
SHA512

44cc012e65c3a92031c1b6f0d07b76c0c1de6b99f09cfbd243fb0529a87ae2584f8f472e92c5a5a4adbd28ce0efdac47941fc3efa5d7b126b0be49a8ba2291ce
SSDEEP

1536:3Mi2NpyUCoci2y7qAXvWw20o6UcSH+H8+kew8yd248qfvq3w+mRDyn:3MhyGdB7qAXvBccSH+HRkX8ydP8IvbD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a22260b0a5346567afbc1a277d2fd8dd_JaffaCakes118

Files

a22260b0a5346567afbc1a277d2fd8dd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

373f00b711d3eeae5f99356cf8f61c70

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\adLIi\qcFMokd\tIfKRnCo\unpp\rgDac.pdb

Imports

user32

CheckDlgButton
GetForegroundWindow
SetLastErrorEx
DispatchMessageW
IsZoomed
SetMenuItemInfoW
AdjustWindowRect
SendInput
TileWindows
DrawAnimatedRects
DeleteMenu
GetWindow
LoadStringA
GetClientRect

kernel32

SetHandleInformation
CreateDirectoryA
SetSystemTime
InitializeCriticalSection
lstrcatW
TlsGetValue
lstrlenW
GetModuleHandleA
VerSetConditionMask

msvcrt

strtok
towlower
wcschr
free
wcscpy
bsearch
fgets

shlwapi

PathGetArgsW
StrToIntW

gdi32

EnumFontFamiliesW
TranslateCharsetInfo
Escape
GetNearestColor
CreateICW

ntdll

_aullrem

Exports

Exports

?DksirvJpabRKkwsfiz@@YGGKI@Z
?cuxyfjeAyt@@YGPADPAEH@Z
?KgxwoybyPycGguBoykvqmo@@YGPAMJPAH@Z
?buYRMqujabIp@@YGPADPAIH@Z

Sections

.text
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

373f00b711d3eeae5f99356cf8f61c70

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

shlwapi

gdi32

ntdll

Exports

Exports

Sections

.text Size: 512B - Virtual size: 512B

.edata Size: 512B - Virtual size: 4KB

.code Size: 36KB - Virtual size: 35KB

.data Size: 21KB - Virtual size: 77KB

.rdata Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 512B - Virtual size: 512B

.edata
Size: 512B - Virtual size: 4KB

.code
Size: 36KB - Virtual size: 35KB

.data
Size: 21KB - Virtual size: 77KB

.rdata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 2KB