d53ca3e1bf4d1d6c0b43ca90ae6e9402_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d53ca3e1bf4d1d6c0b43ca90ae6e9402_JaffaCakes118
Size

111KB
MD5

d53ca3e1bf4d1d6c0b43ca90ae6e9402
SHA1

ffd777088d803ed0c09d6bbef82634ec284ea4c4
SHA256

8b063c7eb2bf3321b179fda938ceeca3944d1396a9eefe3ccf5d541cd6da4231
SHA512

dd6047b85d66dec56bdcc1e5aff24bcaeb18ea3395fedcb0b9f2be5552e67886f27f6fcd0325fac46b2e58a40725509825adf84087457c5364185f82ce414e25
SSDEEP

3072:YzBiPAuljfRMf8u3sr5zL/YnwkRkz0GtGu/cDC:2NIjZ3x5gx0PEDC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d53ca3e1bf4d1d6c0b43ca90ae6e9402_JaffaCakes118

Files

d53ca3e1bf4d1d6c0b43ca90ae6e9402_JaffaCakes118
.exe windows:5 windows x86 arch:x86

83a8e67b4a9b7b34367d45058a4ae27e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\zmRy\VvtpF\CguTvsuw.pdb

Imports

comdlg32

GetFileTitleW
ReplaceTextW

gdi32

CreateRectRgn
SaveDC
GetNearestPaletteIndex
RemoveFontResourceW
SetMapMode
WidenPath
GetTextAlign

kernel32

GetTempFileNameA
LocalLock
LCMapStringW
GetStartupInfoW
GetCommTimeouts
lstrlenW
lstrcmpiW
WriteFile
SetupComm
GetProcAddress
FindResourceW
LoadLibraryW
GlobalCompact
HeapWalk

shlwapi

StrCmpNW

user32

RegisterClassA
GetClassLongW
ShowScrollBar
GetMenuCheckMarkDimensions
DefFrameProcW
IsCharUpperA
IsCharAlphaNumericW
MonitorFromRect
GetWindowLongW
GetScrollRange
TranslateAcceleratorW
GetPropW
GetMessageTime

Exports

Exports

?thQyuQaybnehr@@YGPAHHE@Z
?zufuTxcdejlpnyIgdq@@YGFPAD@Z

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 133B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83a8e67b4a9b7b34367d45058a4ae27e

Headers

File Characteristics

PDB Paths

Imports

comdlg32

gdi32

kernel32

shlwapi

user32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.idata Size: 1024B - Virtual size: 998B

.edata Size: 512B - Virtual size: 133B

.temp Size: 74KB - Virtual size: 74KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 17KB

.idata
Size: 1024B - Virtual size: 998B

.edata
Size: 512B - Virtual size: 133B

.temp
Size: 74KB - Virtual size: 74KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB