ae0ee4ce19698284f0aa4da2415ac78d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ae0ee4ce19698284f0aa4da2415ac78d_JaffaCakes118
Size

221KB
MD5

ae0ee4ce19698284f0aa4da2415ac78d
SHA1

bb09d6963e5ae54cb3d2823eddb99bf29188075d
SHA256

09fa0b2a62408331c185700c829b7490f63c65211b75ae423188df9012104977
SHA512

f5331183b014d179ffc7d40d650cecbb27d895c4247f19579f12a5dc6417981acef2e06c51b76e1eada074a105f490090068e91da2c99d568fbccd1e59646fee
SSDEEP

3072:bZcapBASfoeXSOcw1zyymaIAkYnYrVSJicWew1n/8zh72eEWtxaVAgkKTCI6lMcP:tcMTfourYZSHLw583EAaVAF2P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ae0ee4ce19698284f0aa4da2415ac78d_JaffaCakes118

Files

ae0ee4ce19698284f0aa4da2415ac78d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

31e4561f668feaf67301db2ff8b0fa62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

F:\Lekcfrn\zJjxMkW\KPqrxboV\ktYzwgI.pdb

Imports

gdi32

SetMapMode
GetROP2
CreatePatternBrush
BitBlt
SetDIBColorTable

user32

LookupIconIdFromDirectory
InSendMessageEx
GetSystemMenu
GetWindowTextW
IsCharLowerW
ValidateRect
FindWindowExW
SendMessageTimeoutW
GetDC
SetTimer
DefDlgProcW
DrawAnimatedRects

kernel32

GetFullPathNameA
lstrcatA
GlobalAddAtomW
TlsGetValue
SetEndOfFile
SuspendThread
GetCurrentProcessId
GetTempPathA

shlwapi

PathFindExtensionA

comctl32

CreateStatusWindowW
DestroyPropertySheetPage

Exports

Exports

?H__OD_J_DQkmm_HK@@YGPAXPANPAE@Z
?hgpgb_zv_yj@@YGJFE@Z
?F____TXAhAWUHPdqiRA@@YGHH@Z
?VHC_B___MN@@YGPAKI@Z
?I_S_DTT_@@YGFI@Z
?P_CFbhdvleukcSVia@@YGEPAII@Z
?WFTNpH__cxt_kxsEK@@YGXI@Z
?A_XDBGS@@YGPAI_N@Z
?cpuUBITGS@@YGFPAE@Z

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 187B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA1
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA2
Size: 77KB - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31e4561f668feaf67301db2ff8b0fa62

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

kernel32

shlwapi

comctl32

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 512B - Virtual size: 187B

.data Size: 2KB - Virtual size: 2KB

DATA1 Size: 34KB - Virtual size: 33KB

DATA2 Size: 77KB - Virtual size: 241KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 512B - Virtual size: 187B

.data
Size: 2KB - Virtual size: 2KB

DATA1
Size: 34KB - Virtual size: 33KB

DATA2
Size: 77KB - Virtual size: 241KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB