df58e0490b193d78a8a9875324302fff_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

df58e0490b193d78a8a9875324302fff_JaffaCakes118
Size

122KB
MD5

df58e0490b193d78a8a9875324302fff
SHA1

2c474d54d2876062ec368352feaa1b54e08cef0c
SHA256

ee3de6e493349ad62f0ed7291d934fe8ab56670a70290ccac7563843829fa048
SHA512

e8ccedffe2f7b1d895748a3d2a2fb13dc0ff3efc072bcf7d6216b1d7d069276f8254e3b94ff741bb99920fc1114c7f9ae3ea427a55a6e132d4729023254dc85b
SSDEEP

3072:RZMEZeMk2VX2Jw2IUotaHnsmgirugySjQ:IQ3k2sq2wasmbruQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df58e0490b193d78a8a9875324302fff_JaffaCakes118

Files

df58e0490b193d78a8a9875324302fff_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07b08a458364d5c5e9d52521051ef790

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetConsoleCP
SuspendThread
HeapSize
GlobalCompact
CreateMutexA
SetErrorMode
GetFileAttributesExW
CreateFileA
QueryDosDeviceW
SetConsoleMode
SizeofResource
SetHandleInformation
IsValidCodePage
GetCurrentThreadId

user32

LoadIconW
EnumWindows
LoadMenuW
GetAsyncKeyState
IsZoomed
DialogBoxParamW
GetScrollRange
CharNextA
CascadeWindows
GetMessageExtraInfo
GetSysColor
IsCharAlphaNumericW

gdi32

ExcludeClipRect
SetViewportExtEx
ScaleWindowExtEx
AddFontResourceW
MoveToEx
SetROP2
ExtTextOutA
GetTextExtentPoint32A

Exports

Exports

_Lmakaxmw_vjfvxtk_i@8
_JcrpwfhT_rizbOA@8
_GkqsqqWs_ugdzjzts_q@16
_OzliwAcC_rzOQnfa@12
_Slzohwuw_uxxngghts_ilI@12

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.strs
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmem
Size: - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

SETUP
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07b08a458364d5c5e9d52521051ef790

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 2KB - Virtual size: 2KB

.strs Size: 5KB - Virtual size: 4KB

.data Size: 6KB - Virtual size: 6KB

.vmem Size: - Virtual size: 332KB

SETUP Size: 89KB - Virtual size: 89KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 2KB - Virtual size: 2KB

.strs
Size: 5KB - Virtual size: 4KB

.data
Size: 6KB - Virtual size: 6KB

.vmem
Size: - Virtual size: 332KB

SETUP
Size: 89KB - Virtual size: 89KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 3KB