a53e8baec941f00fca1b06c068b3f10c_JaffaCakes118

General

Target

a53e8baec941f00fca1b06c068b3f10c_JaffaCakes118
Size

176KB
MD5

a53e8baec941f00fca1b06c068b3f10c
SHA1

87f09a0f4b896118f26b8b57f5938f6c69f69425
SHA256

1646f4379036732f0167a3ef29a74d32b3c150a7c48b8b0a844885e018095af0
SHA512

609531ba97428fdfb9c746c3af7a3417906cba4d4b5cfa3c36eb5d523be41204f4deaed6dffa602e343b440a8f9ba16fbb639a6d94c7f50671d5ae705ae6585f
SSDEEP

3072:Kq0s/ij67nr7+E2D1KZ7Lgc3wv9WyFSBRs2hHO7fYPkqs8Hw/ZmA:Kq0RwX+E2Rs3p3u9jAs2h0Ys1/p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a53e8baec941f00fca1b06c068b3f10c_JaffaCakes118

Files

a53e8baec941f00fca1b06c068b3f10c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

43b451a2357fd0739977ffc3341d685d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\dufx\vurs\yIeRrM.pdb

Imports

gdi32

TextOutW
CreatePolygonRgn
Ellipse
CreateICW
SelectPalette
StartDocW
SetPaletteEntries

user32

GetPropW
OpenDesktopW
AdjustWindowRect
GetWindowLongW
GetMenuItemID
ShowScrollBar
CharNextExA
SetWindowTextA
InSendMessageEx
ArrangeIconicWindows
SendNotifyMessageW
SetUserObjectInformationW

kernel32

GetProcAddress
LoadLibraryW
VirtualProtect
lstrcmpiW
GetComputerNameExA
ExitThread
HeapLock
CancelWaitableTimer
GetComputerNameW
GetTickCount
RaiseException
GetVersionExA
WaitForMultipleObjectsEx

Exports

Exports

?HaKulKqWQt@@YGPAXPAIE@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.temp
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43b451a2357fd0739977ffc3341d685d

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.temp Size: 140KB - Virtual size: 140KB

.edata Size: 512B - Virtual size: 92B

.data Size: 5KB - Virtual size: 85KB

.crt Size: 5KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.temp
Size: 140KB - Virtual size: 140KB

.edata
Size: 512B - Virtual size: 92B

.data
Size: 5KB - Virtual size: 85KB

.crt
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 2KB