d2cdd4934880c2ac01743a286543bcc4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2cdd4934880c2ac01743a286543bcc4_JaffaCakes118
Size

72KB
MD5

d2cdd4934880c2ac01743a286543bcc4
SHA1

e5f4f179eeebeb7dddf523a1b0997def702ccca9
SHA256

f813554cfb5a89f6872f8ae20e6d680cfb118aa02d28bbb158dd81da87528cc0
SHA512

c3ddb38a60398ecd230e5e7adbf28f848aa994c380244f57389e2c8a9e6c47dbf621f4154293d9be2586fd472bf83a7041c9640a6311fec59ebcb70c9429ba98
SSDEEP

1536:7+nO1+FZ+sHOabl2M/l2tmLYKHh0j1jdCZSd22V1boxqJ:an4g3b84QttVj1vd2i1EI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2cdd4934880c2ac01743a286543bcc4_JaffaCakes118

Files

d2cdd4934880c2ac01743a286543bcc4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSystemMetrics
OpenIcon
MessageBoxA
GetForegroundWindow
GetIconInfo
SetRect
CreatePopupMenu
GetKeyboardLayout
CreateMenu
DispatchMessageA
BeginPaint
DefMDIChildProcA
SetWindowTextA
LoadCursorA
EnableWindow
GetActiveWindow
CallWindowProcA
GetMenuItemInfoA
GetWindow
PtInRect
SetScrollRange
SetWindowLongA
FindWindowA
IsWindowEnabled
GetScrollRange
GetMenuState
GetKeyState
UnhookWindowsHookEx
GetWindowTextLengthA
CharNextA
GetClassInfoA
MsgWaitForMultipleObjects
GetDesktopWindow
GetClientRect
CharUpperA
UpdateWindow
IsDlgButtonChecked
DrawFrameControl
GetKeyboardLayoutList
GetDlgItem
PostMessageA
GetDC
GetTopWindow
EnableScrollBar
CreateWindowExA
SetWindowsHookExA
CharToOemA
FillRect
ShowWindow
LoadBitmapA
SetFocus
IsWindowVisible
GetSysColor
wsprintfA
SetWindowPlacement
CloseClipboard
GetWindowRect
EnumWindows
GetCursor
SetWindowLongW
SetScrollInfo
IsZoomed
RegisterClassA
FrameRect
EnumChildWindows
IsIconic
GetKeyboardType
SetClassLongA
ScrollWindow
TranslateMessage
IsCharUpperA
MoveWindow
GetMenuStringA
SetMenuItemInfoA

kernel32

GetTickCount
GetLastError
GetUserDefaultLCID
GetThreadLocale
ExitProcess
VirtualAlloc

gdi32

CreatePalette

shell32

SHFileOperationA
Shell_NotifyIconW
SHGetFolderPathA

Exports

Exports

oth_3TkZB
tBJZLqdkAyuZM@12
_FFg0GwG0tLrDVI@20
_SfDGC
XLilbmse099
YGUh6YK4T@4
_fpZH8NWp
nHphZI@4
_xG_ZIRaCr93@12
N_X_CjbyEZ5jM
_VN4KpsA3_jiHy
NcZNn1g@4
_rziVysdloff@24
_UmWaEB@4
ilvVmSKG7u
_HXMImq7R8B@24
oT8pzO0@8
_AL5iSxma@8
_U5MDayQELf@4

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a68c13c326c0a62931fd7d0fdcc176af

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 50KB - Virtual size: 66KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 50KB - Virtual size: 66KB

.rsrc
Size: 4KB - Virtual size: 4KB