dd5f491a24acb5d0d0fa5f83bc1eaa98_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dd5f491a24acb5d0d0fa5f83bc1eaa98_JaffaCakes118
Size

3.0MB
MD5

dd5f491a24acb5d0d0fa5f83bc1eaa98
SHA1

dafdc875d639ccbba41b6f02ca45eb00109b3a6d
SHA256

51b0a410a19ca79b7a075ff600ff13d704b58f636ac262b877ea6bcae7615745
SHA512

75c470e6bc0955e44669c5f70cc495d99df993065d797aebdd3c1f0be67428da7f2c8acb71f53ff681ca63e5d7a52a1b2270e9dff55392a3e1140a89d33db082
SSDEEP

49152:PwegFruGTU1WtxLQRNLKX1lmX1lrTSWgY4:oegFr3NIRtKllmlldE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd5f491a24acb5d0d0fa5f83bc1eaa98_JaffaCakes118

Files

dd5f491a24acb5d0d0fa5f83bc1eaa98_JaffaCakes118
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

CaptureWizard.pdb

Exports

Exports

??0CtrlContainerFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0CtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0FrameEqualizer@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@@Z
??0GroupBoxFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0GroupBoxFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0HorizFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??0IMsoAutoLayoutDialog@DlgAutoLayout@@IAE@XZ
??0ListEditFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0MsoWCtrlContainerFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWCtrlFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWFrameEqualizer@@QAE@AAVIMsoWAutoLayoutDialog@@@Z
??0MsoWGroupBoxFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWGroupBoxFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWHorizFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0MsoWListEditFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWNumInputFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWOverlapFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0MsoWTabCtrlFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWTableFrame@@QAE@AAVIMsoWAutoLayoutDialog@@HHPAVMsoWCompositeFrame@@@Z
??0MsoWVertFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0NumInputFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0NumInputFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0OverlapFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??0TabCtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0TabCtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0TableFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@HHPAVCompositeFrame@1@@Z
??0VertFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??1IMsoAutoLayoutDialog@DlgAutoLayout@@MAE@XZ
_MsoDALCheckBoxBMHeight@0
_MsoDALCheckBoxBMWidth@0
_MsoDALCheckBoxBMWidthPlusMargin@4
_MsoDALDestructFrames@4
_MsoDALEditStrHeightPix@4
_MsoDALFDlgIsValid@4
_MsoDALGroupBoxNoLabelTopAdjustPix@4
_MsoDALMarkDlgInvalid@4
_MsoDALSuspendFrameDestruction@4
_MsoDUToPix@12
_MsoDestroyIMsoWAutoLayoutDialog@4
_MsoFCreateIMsoWAutoLayoutDialog@12
_MsoPixToDU@12
_MsoWIsAutoLayoutEnabled@8
_MsoWTabCtrlIndexToHwnd@8

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.yvs
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.reloc Size: 174KB - Virtual size: 173KB

.yvs Size: 1KB - Virtual size: 4KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

.reloc
Size: 174KB - Virtual size: 173KB

.yvs
Size: 1KB - Virtual size: 4KB