b52d97a5d03dc4e75a48f53febb6efd3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b52d97a5d03dc4e75a48f53febb6efd3_JaffaCakes118
Size

226KB
MD5

b52d97a5d03dc4e75a48f53febb6efd3
SHA1

81324cee5d0fda2650314f43e05054442ca8d758
SHA256

90eb3e7d7720fb7de0ee2e167bffc7f07c9b239abdfc76c89c42ed7b84f6dcdf
SHA512

4ee9387762dee424e56926d64a2c75d5d19992f26f5c4f960f7d7d63c2a2d81895234c95aa17a6b4d3c9c29fb3e68f73862d148221784c399aa95ce35a22e4c8
SSDEEP

6144:VSJD6izvODPjq5YlpJqrOxPPBStuM2RNhT7RHmuy6JapB0K:VSJ2YWbe5YlS6lPQuR7hxr8H0K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b52d97a5d03dc4e75a48f53febb6efd3_JaffaCakes118

Files

b52d97a5d03dc4e75a48f53febb6efd3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f800b279a5bfb71877f7ddcabc4654d7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
AttachThreadInput
SystemParametersInfoA
IsZoomed
InflateRect
UnloadKeyboardLayout
CharUpperA
CreateIconIndirect
RemovePropW
GetMenuStringA
PostMessageA
RegisterHotKey
PostMessageW
MoveWindow
GetWindowTextW
CreateMenu
ShowScrollBar
SendMessageW
SetFocus
DestroyWindow
GetWindowRect
OffsetRect
ToUnicodeEx
DefWindowProcW
LockWindowUpdate
LoadBitmapA
BeginPaint
SetCursor
GetMenuItemID

advapi32

IsTextUnicode

gdi32

PtInRegion
TextOutA
SetLayout
GetNearestColor
GetTextExtentPointW
GetTextExtentPoint32W
EnumFontsW
LineTo
SetPaletteEntries
EnumFontFamiliesExW
GetTextMetricsA
SetDIBitsToDevice
Ellipse

kernel32

SetThreadAffinityMask
DeleteCriticalSection
CreateNamedPipeW
RemoveDirectoryW
Sleep
GetCurrentThreadId
EnumResourceNamesA
lstrcatW
EnumSystemLocalesA
GetLongPathNameW
GetFileAttributesW
CreateEventW
GetModuleFileNameA
FindResourceW

Exports

Exports

?KJHFjkjfkIUODFUIufiiUIFUFUhkjflkdjlfudouioiu@@YGKEPA_WG@Z

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f800b279a5bfb71877f7ddcabc4654d7

Headers

File Characteristics

Imports

user32

advapi32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 115KB - Virtual size: 114KB

.rdata Size: 70KB - Virtual size: 70KB

.mdata Size: 1KB - Virtual size: 1KB

.data Size: 36KB - Virtual size: 152KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 115KB - Virtual size: 114KB

.rdata
Size: 70KB - Virtual size: 70KB

.mdata
Size: 1KB - Virtual size: 1KB

.data
Size: 36KB - Virtual size: 152KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB