aeb00663f3593f10e7dcab52ef8a4e83_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

aeb00663f3593f10e7dcab52ef8a4e83_JaffaCakes118
Size

115KB
MD5

aeb00663f3593f10e7dcab52ef8a4e83
SHA1

fc013183fbad7d43ab9ec80ae7f8511e938d4491
SHA256

7ff81e34d79a47d22c79b7c89a0cbbf16304861eb50ad01a111d20164fff53c0
SHA512

7a33a9484d281581bb00bef3bfe88e30b72c7eee6e024dbe7fc4c0cc2f1908d72269f5ac9fb2e5bf7baaecad7183724cb6d164091d185aa425fdc552b23de18c
SSDEEP

1536:4HHnEESAaGojQltvCUegtgv7jv340xuuEhm2VRyfoiLgiEKPjg+DkjAgcrm:gnsAaGokLre+FHhh1Sjg+wcrm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aeb00663f3593f10e7dcab52ef8a4e83_JaffaCakes118

Files

aeb00663f3593f10e7dcab52ef8a4e83_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7bf6d2f23a47e1744f47161d11afdcdd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\nrgkAT\KsojQjYF\VniHYpp\rcZmgxt\puKcK.pdb

Imports

user32

ShowScrollBar
GetWindowLongW
GetDlgItem
SetWindowTextW
CharLowerA
IsCharUpperA
GetActiveWindow
GetPropW
GetScrollRange
ShowCursor
CharToOemW
CharPrevW

kernel32

HeapFree
LoadLibraryW
WaitForMultipleObjectsEx
GetProcAddress
EnumResourceNamesW
lstrcmpiW
MoveFileW
CopyFileA
lstrlenW
GetCommTimeouts
FindFirstChangeNotificationW
GlobalHandle

gdi32

BitBlt
CreateDIBitmap
LineDDA
CreateHatchBrush
Polyline
CreatePen
GetSystemPaletteEntries
CreateEllipticRgnIndirect

comdlg32

ChooseFontW
PrintDlgExW
PrintDlgW

shlwapi

StrCmpNW

Exports

Exports

?pVmDdGPXcaZDodx@@YGDF@Z
?bypgaRtnnJIsuizyNln@@YGPAIPAG@Z
?alfHiyUlRjgutU@@YGHD@Z

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 169B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7bf6d2f23a47e1744f47161d11afdcdd

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

comdlg32

shlwapi

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 19KB

.idata Size: 1024B - Virtual size: 956B

.edata Size: 512B - Virtual size: 169B

.temp Size: 77KB - Virtual size: 77KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 19KB - Virtual size: 19KB

.idata
Size: 1024B - Virtual size: 956B

.edata
Size: 512B - Virtual size: 169B

.temp
Size: 77KB - Virtual size: 77KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 3KB - Virtual size: 2KB