da7063be132a768a0f6822c2e401ffe6_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

da7063be132a768a0f6822c2e401ffe6_JaffaCakes118
Size

112KB
MD5

da7063be132a768a0f6822c2e401ffe6
SHA1

fb51f607ff9751bb0990016828b4d26644988d3f
SHA256

28984121a46b59fa529585f6fe8f809901479d3bc3ad1a91a2b89049548bb0c9
SHA512

02d06981339c8cf249c191423975838bffe10643135f4dc5c631e2304d04ddfcb1d90de00f7a8679362b6b8ba2f93c4df1bb817a1347f10efa504e5fa5d8fc53
SSDEEP

3072:TY0TcFGrPE2n7Upif8hT/2zFBWMUdu1RQjsk:PB8I0WWMRE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da7063be132a768a0f6822c2e401ffe6_JaffaCakes118

Files

da7063be132a768a0f6822c2e401ffe6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3602c10b58ca4566a24a90341c6a51ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\vequlo\yAepdl\iraP\AupkaPsr\ktkMgWet.pdb

Imports

comdlg32

GetSaveFileNameW
ChooseColorW
GetFileTitleW
PageSetupDlgW

kernel32

GetProcAddress
GetAtomNameW
HeapFree
ReleaseMutex
lstrcmpiW
LoadLibraryW
CreateSemaphoreW
SetFileAttributesA
lstrlenW
TlsFree
GlobalLock
CreateDirectoryA
DeleteCriticalSection

user32

SetTimer
DefFrameProcA
IsCharUpperA
SwitchToThisWindow
ShowScrollBar
EndDialog
GetWindowLongW
DestroyMenu
GetDCEx
GetPropW
SetWindowPos
ShowWindow
GetMenuItemInfoW

gdi32

StartPage
RealizePalette
CreateHatchBrush
LPtoDP
CreateHalftonePalette
ExtTextOutA

shlwapi

StrCmpNW

Exports

Exports

?SNekcrzGkrcZhemApd@@YGJ_N@Z
?jZkMytuihjCesvouuatgT@@YGPAXM@Z

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 139B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3602c10b58ca4566a24a90341c6a51ad

Headers

File Characteristics

PDB Paths

Imports

comdlg32

kernel32

user32

gdi32

shlwapi

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 18KB

.idata Size: 1024B - Virtual size: 964B

.edata Size: 512B - Virtual size: 139B

.temp Size: 75KB - Virtual size: 75KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 18KB - Virtual size: 18KB

.idata
Size: 1024B - Virtual size: 964B

.edata
Size: 512B - Virtual size: 139B

.temp
Size: 75KB - Virtual size: 75KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB