aaea1f940230232302000a23d8adcb7a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

aaea1f940230232302000a23d8adcb7a_JaffaCakes118
Size

162KB
MD5

aaea1f940230232302000a23d8adcb7a
SHA1

19a7550b8722f0fc1ddb833a7b97c42df2d1b53b
SHA256

3ba7778efc23ca7fa2ad727f0b3fb578b543d173848899bb433d0cc12f5a2c7c
SHA512

a3132aeb9b1a000bb37a5d180a14640e2702f5b1d7e4f9c503b067e55f608e5e9ae9734037cd24022eefa388715cde1932582a53e0b4ae21d3a0e3264b66da2c
SSDEEP

3072:i1SvF0+xs3V0MMkUC6K3IjQy2rVAt3dWr5tPeaiOcs4Z2m:iMvF0+xs3iC6qxrVwKzG5w4H

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aaea1f940230232302000a23d8adcb7a_JaffaCakes118

Files

aaea1f940230232302000a23d8adcb7a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f85a179bcc35bf2cd90c782063c44c76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\CIrlf\sKIL\lceIzh.pdb

Imports

shlwapi

StrCpyW
UrlGetPartW
StrToIntA

gdi32

GetSystemPaletteEntries
GetBitmapBits
PtVisible
SetTextColor
WidenPath
RoundRect

comctl32

ImageList_GetIconSize
ImageList_AddMasked

user32

RegisterWindowMessageW
CreateDialogParamW
GetDlgCtrlID
GetWindow
MapWindowPoints
CharNextW
GetSysColor
DestroyAcceleratorTable
SetWindowTextW
DialogBoxIndirectParamW
DrawMenuBar
GetMenuItemRect
SystemParametersInfoA

kernel32

GetCommModemStatus
SearchPathW
lstrcpyW
GetTempPathA
ExitProcess
GetSystemTimeAsFileTime
lstrcmpiA
SetCurrentDirectoryA
lstrcmpiW
OpenEventW

Exports

Exports

?_I_fvsaSBFGGQUjo@@YGEI@Z
?vv_t__kl__bmbesleaf@@YGIDF@Z
?ddtw_tfunwQLNI_Gk@@YGENM@Z
?a_z_j_KTgfzwoFTH_t@@YGPA_NK@Z
?lC_T_MVQVYSMOH@@YGPAXEF@Z

Sections

.text
Size: 57KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idat
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pacdat
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f85a179bcc35bf2cd90c782063c44c76

Headers

File Characteristics

PDB Paths

Imports

shlwapi

gdi32

comctl32

user32

kernel32

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 389KB

.data Size: 40KB - Virtual size: 39KB

.idat Size: 15KB - Virtual size: 15KB

.rdata Size: 19KB - Virtual size: 19KB

.pacdat Size: 16KB - Virtual size: 16KB

.rsrc Size: 10KB - Virtual size: 12KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 57KB - Virtual size: 389KB

.data
Size: 40KB - Virtual size: 39KB

.idat
Size: 15KB - Virtual size: 15KB

.rdata
Size: 19KB - Virtual size: 19KB

.pacdat
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 10KB - Virtual size: 12KB

.reloc
Size: 2KB - Virtual size: 1KB