c0ae4bcff616998edf55f31bcd2b8e8f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c0ae4bcff616998edf55f31bcd2b8e8f_JaffaCakes118
Size

52KB
MD5

c0ae4bcff616998edf55f31bcd2b8e8f
SHA1

7a83d19c605db768ead4b99e28fd1fa300611107
SHA256

5b9ae14afafdf4c076d3516eddb2ea5f21ab1cc901c0c35038c8378b3fb5dfa4
SHA512

ded8216318957bce4d7ba010a6e4788fb7e11849c4b857b7c581e406927051acefcc14d24cbc32625acb47de50c8021c8ffd73a91438ccf75e153fee3687690d
SSDEEP

768:uTvcbzpJ3yt2hWXGrrjdaCfuFQNkjtE75ppFL3LpCVm0DRvkfJmz02iy:uTvcbY2hWXKrjXFv5pf3VCVJ+f0z8y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0ae4bcff616998edf55f31bcd2b8e8f_JaffaCakes118

Files

c0ae4bcff616998edf55f31bcd2b8e8f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e7efdf689c62fa799cf2c19870a55978

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextColor
Rectangle
ScaleWindowExtEx
GetTextCharsetInfo
GetTextExtentPointA
CreateFontIndirectA
SelectObject
GetLayout
GetViewportOrgEx

user32

MapDialogRect
wsprintfA
GetCursorPos
SetPropW
GetWindowWord
MBToWCSEx
GetClassInfoA
GetDC
ClientToScreen
PostThreadMessageA
GetScrollRange
VkKeyScanW
LoadLocalFonts
CharToOemA
GetMessageTime
AppendMenuW

kernel32

lstrcmpiA
GetFileType
lstrlenW
DuplicateHandle
GetUserDefaultUILanguage
DeleteTimerQueue
EscapeCommFunction
CreateTimerQueue
MoveFileExW
GetUserDefaultLangID
lstrcatA
SetThreadAffinityMask

shlwapi

StrPBrkW
StrTrimW
PathIsLFNFileSpecA

comdlg32

PageSetupDlgW
GetSaveFileNameA
GetOpenFileNameA

Exports

Exports

_HeiIwfzb_jqrepub_kWxm@4
?_CopyMetaFileW@@YGKKK@Z
_Cqwgowga_jaudszEq@8
_UbovriVxk_itoOii@16
_Qrdpwefp_hgvucqd@4
_PPxdtsqLd_jlpnqA@16

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CDat_3
Size: 3KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CDat_1
Size: 1024B - Virtual size: 757B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CDat_2
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CDat_5
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7efdf689c62fa799cf2c19870a55978

Headers

File Characteristics

Imports

gdi32

user32

kernel32

shlwapi

comdlg32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 2KB

.CDat_3 Size: 3KB - Virtual size: 211KB

.CDat_1 Size: 1024B - Virtual size: 757B

.CDat_2 Size: 6KB - Virtual size: 6KB

.CDat_5 Size: 3KB - Virtual size: 3KB

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 2KB

.CDat_3
Size: 3KB - Virtual size: 211KB

.CDat_1
Size: 1024B - Virtual size: 757B

.CDat_2
Size: 6KB - Virtual size: 6KB

.CDat_5
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 4KB - Virtual size: 4KB