a5cec62a3a15b45e7fd658555aa91cde_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a5cec62a3a15b45e7fd658555aa91cde_JaffaCakes118
Size

108KB
MD5

a5cec62a3a15b45e7fd658555aa91cde
SHA1

d71c8f081f5c28af32d757421cb221bbe2f0a056
SHA256

3952527929583bdd3b9883b4986827012b447c8cac23ba6535be86b43db6aa66
SHA512

15ae07aa255b0a97391aa01033318a62809f17649521b150d4010b6498897316a2c83b0f1c9c5887302325d7544c67cd110e318907037190ecdd77d6cef0ff7a
SSDEEP

3072:ymzmBqeEgAY3qVMG3GtptIMmWsknn7W04J:ypsg3w3Eag7W0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5cec62a3a15b45e7fd658555aa91cde_JaffaCakes118

Files

a5cec62a3a15b45e7fd658555aa91cde_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6c7254bc2c309cc1e265898ab855f4da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\fvYeeqh\CuBURgxI\bqAqrq.pdb

Imports

user32

DrawStateW
GetCaretPos
wsprintfA
IsChild
ShowScrollBar
GetWindowLongW
RegisterHotKey
IsCharUpperA
LockWindowUpdate
GetPropW
GetUserObjectInformationA
SetFocus
LoadCursorW

gdi32

PolyBezier
Polygon
CreatePalette
GetPaletteEntries
SetBrushOrgEx
PatBlt
RemoveFontResourceW
DeleteDC
ResizePalette

kernel32

lstrlenW
GetProcAddress
GetCommandLineW
TlsFree
SetNamedPipeHandleState
EnumResourceTypesA
IsBadStringPtrW
lstrcmpiW
SetEndOfFile
GetModuleHandleW
LoadLibraryW
IsBadCodePtr
GetComputerNameExW

shlwapi

StrCmpNW

comdlg32

CommDlgExtendedError
FindTextW
PrintDlgW
GetOpenFileNameW

Exports

Exports

?PvplfdPjrhffhv@@YGX_NH@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 93B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c7254bc2c309cc1e265898ab855f4da

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

kernel32

shlwapi

comdlg32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 93B

.temp Size: 73KB - Virtual size: 73KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 93B

.temp
Size: 73KB - Virtual size: 73KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB