b3f0247c47af5d70605e805ee27e8c75_JaffaCakes118

General

Target

b3f0247c47af5d70605e805ee27e8c75_JaffaCakes118
Size

223KB
MD5

b3f0247c47af5d70605e805ee27e8c75
SHA1

b310704a97fc8571607e9217c7b6efc00ec8cce1
SHA256

96e2690517c39178054b9f235a3b824f786fb21a2a9c8eb9cd276614f8eb2812
SHA512

8ca8ad7d003bdb1c692d35ec31b16cd35f1eb661d1814b07b4271a77930774ace3518f474047700c79c4ba080daf1078eb470a574c03bde9714eb53bfa322851
SSDEEP

6144:8+Z8s2zfm1ukBhaR7ak6TsrLAdkt1XnQiEh:8+ZYqBMaDikdoQie

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3f0247c47af5d70605e805ee27e8c75_JaffaCakes118

Files

b3f0247c47af5d70605e805ee27e8c75_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8974f62d90724fceb9c7186a13be22b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadImageA
SetScrollPos
CharUpperW
CallWindowProcW
PeekMessageA
DefFrameProcA
CopyRect
GetUpdateRgn
DrawAnimatedRects
GetSysColor
CreateDialogParamA
DrawTextExW
SetCursor
ModifyMenuW
EqualRect
GetMenuItemRect
ScreenToClient
DestroyAcceleratorTable
PostThreadMessageA
SetDlgItemInt
RegisterClassW
GetClassInfoExA
FrameRect
IntersectRect
GetMessageA
LoadImageW
CreateIconIndirect
GetShellWindow
SetMenuDefaultItem

gdi32

UnrealizeObject
GetTextExtentPoint32W
SelectClipRgn
PatBlt
CreateDIBitmap
CreateFontW
ExcludeClipRect
WidenPath
GetTextMetricsW
SetROP2
GetNearestColor
BitBlt
CreateEllipticRgnIndirect
Rectangle

kernel32

GetACP
lstrcmpiW
SetMailslotInfo
GetTimeZoneInformation
DeviceIoControl
SetPriorityClass
GlobalAddAtomA
SetLastError
Sleep
HeapSize
SetThreadAffinityMask
FlushFileBuffers
CreateEventA
SuspendThread
ConnectNamedPipe

Exports

Exports

?KJDKjfuIOPFpOFIPOfOFIijflkj@@YGKEPA_WG@Z

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 35KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8974f62d90724fceb9c7186a13be22b8

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 116KB

.rdata Size: 69KB - Virtual size: 68KB

.mdata Size: 2KB - Virtual size: 1KB

.data Size: 35KB - Virtual size: 139KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 117KB - Virtual size: 116KB

.rdata
Size: 69KB - Virtual size: 68KB

.mdata
Size: 2KB - Virtual size: 1KB

.data
Size: 35KB - Virtual size: 139KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB