b1d89507f20743d50247d19ca181e1f7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b1d89507f20743d50247d19ca181e1f7_JaffaCakes118
Size

221KB
MD5

b1d89507f20743d50247d19ca181e1f7
SHA1

9d9c1561eb99236ec225bf64d173c87f05a3a802
SHA256

67ce349cfb284f652e939913643331dda17a3b19d146bb1a0655c5f64c0de630
SHA512

4fe930a8b4e755134bad12ffd57ee68473a4bb1d4e88b26a150577a7f4efc7c6c9d7113142ead4e8727793c78c1a3b0502badd5ba1e38208d26640beffd743c7
SSDEEP

6144:YgZ5cBCl7M1A4Zu2eu2kJ4RefvXuUODXRUF+MHUHG:YgZ5aEaA4ZuYAXqoH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1d89507f20743d50247d19ca181e1f7_JaffaCakes118

Files

b1d89507f20743d50247d19ca181e1f7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b42b5dc56f7d1267b20bb8f6aa672dbe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgExW
GetSaveFileNameA
CommDlgExtendedError

user32

IsWindow
InSendMessage
LoadBitmapW
CopyAcceleratorTableW
CreateDialogIndirectParamW
IsMenu
EnumChildWindows
ShowCaret
CharLowerA
GetMenu
SetForegroundWindow
GetWindowDC
BeginDeferWindowPos
MonitorFromRect
IsCharAlphaW
GetMenuCheckMarkDimensions
CharPrevW
LoadImageA
CharNextW
LoadIconA
DragObject
TrackPopupMenu
ShowWindow
ReplyMessage
MapVirtualKeyExW
IsZoomed
MessageBoxExW
ShowOwnedPopups
GetDoubleClickTime

gdi32

GetDIBColorTable
GetTextCharsetInfo
TextOutW
DeleteObject
CreatePolygonRgn
ResizePalette
SetDIBitsToDevice
GetROP2
SetPaletteEntries
CreateDIBitmap
UnrealizeObject
SetWindowOrgEx
CreateEllipticRgnIndirect

shlwapi

StrNCatA

kernel32

LocalAlloc
LocalFree
LoadLibraryExA
SetCurrentDirectoryA
GetModuleHandleA
FindNextFileA
WinExec
EnumResourceTypesA
WaitForSingleObject
LCMapStringW
GlobalAlloc
LoadResource
VirtualQuery
GetModuleHandleW
GlobalReAlloc
LoadLibraryW
lstrcpyW

Exports

Exports

?KJFDkljfljhUYDFuifUKYFlKFilFUYFUIh@@YGKEPA_WG@Z

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b42b5dc56f7d1267b20bb8f6aa672dbe

Headers

File Characteristics

Imports

comdlg32

user32

gdi32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 69KB - Virtual size: 68KB

.mdata Size: 12KB - Virtual size: 12KB

.data Size: 35KB - Virtual size: 194KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 69KB - Virtual size: 68KB

.mdata
Size: 12KB - Virtual size: 12KB

.data
Size: 35KB - Virtual size: 194KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB