ad959e1fba1f460731970f96c5f583c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ad959e1fba1f460731970f96c5f583c4_JaffaCakes118
Size

251KB
MD5

ad959e1fba1f460731970f96c5f583c4
SHA1

bcbde6e8137ca845f7f8653fa0cc1531342844db
SHA256

a547e9bd6d7dfec80b600033925ec2441fe708c9272cb07c1a9d144df39f3a10
SHA512

493a8dc6abc88ffb224b5f17e3301282d8de9d8257128c8a70d973c97705d31d01f7911d98e97b8deb215eee7cf4a4ee730ea3bc3eb6e8278d52592924e1b436
SSDEEP

6144:b/AR42llKtI9sRQUlfTv3h0AvHZJuG3Hsp++Vt:bul1OZvukHZxMUyt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad959e1fba1f460731970f96c5f583c4_JaffaCakes118

Files

ad959e1fba1f460731970f96c5f583c4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d166f7fbc778182deece258e29ed112f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvertRect
GetDC
CharUpperBuffA
BeginDeferWindowPos
IsIconic
TranslateAcceleratorW
LoadBitmapA
LoadIconA
SetCursor
RemoveMenu
GetDlgItem
wvsprintfW
keybd_event
RegisterWindowMessageW
CreateDialogParamA
DefDlgProcW
CreateIconIndirect
EnableMenuItem
GetSysColor
ScrollWindowEx
SetScrollRange
CharPrevW
EnableWindow
OpenInputDesktop
MessageBoxW
OffsetRect
ModifyMenuW
DialogBoxIndirectParamA
PeekMessageA
CharToOemBuffA
CharUpperBuffW
InsertMenuW
GetKeyboardLayout
GetMenuStringW
ArrangeIconicWindows
DefWindowProcA
CloseDesktop
GetMenuItemRect

comdlg32

GetFileTitleW
ReplaceTextW
GetOpenFileNameW
PageSetupDlgW

kernel32

GetVersionExA
WaitCommEvent
MoveFileW
LocalUnlock
lstrlenA
GetTempFileNameW
CreateNamedPipeA
GetAtomNameA
lstrcmpW
GlobalFlags
GlobalMemoryStatus
LCMapStringW
ReleaseMutex
lstrcpyW
UnmapViewOfFile
CreateSemaphoreA
FreeResource
GetTempPathA
FileTimeToDosDateTime

gdi32

CreateHalftonePalette
SetMapMode
CreateFontIndirectA
GetClipBox
CreateRectRgn
CreateFontIndirectW
CreateSolidBrush
SetDIBitsToDevice
CreateFontW
UnrealizeObject
GetTextMetricsA
GetTextExtentPoint32W
RealizePalette
GetBitmapBits
IntersectClipRect
GetTextFaceW
SaveDC
Polygon

ntdll

memset

Exports

Exports

?NDJndjklIODUiuodjilkjDUIOioudIUODOI@@YGKEPA_WG@Z

Sections

.text
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 1024B - Virtual size: 553B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d166f7fbc778182deece258e29ed112f

Headers

File Characteristics

Imports

user32

comdlg32

kernel32

gdi32

ntdll

Exports

Exports

Sections

.text Size: 155KB - Virtual size: 154KB

.nfodat Size: 512B - Virtual size: 360B

.point Size: 512B - Virtual size: 360B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 14KB - Virtual size: 14KB

.temp Size: 1024B - Virtual size: 553B

.port Size: 22KB - Virtual size: 22KB

.rsrc Size: 52KB - Virtual size: 56KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 155KB - Virtual size: 154KB

.nfodat
Size: 512B - Virtual size: 360B

.point
Size: 512B - Virtual size: 360B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 14KB - Virtual size: 14KB

.temp
Size: 1024B - Virtual size: 553B

.port
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 52KB - Virtual size: 56KB

.reloc
Size: 2KB - Virtual size: 1KB