ea1c61b3067034527270379aca7b927b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea1c61b3067034527270379aca7b927b_JaffaCakes118
Size

120KB
MD5

ea1c61b3067034527270379aca7b927b
SHA1

1bd03b94d5cfb1409d32f5e80dbba38b1986771b
SHA256

6fb7764e9be9153673116791f010b13dc9ead63fa8d4f4026f785623bfa246f2
SHA512

9c6b45b38067bc1e40f485d69f426e9b79913a94e3881e6b7900b45f27fbd897d6034738cc93ca1a861bfc1ddf5549b262c324f6fac5f3234cb5edbcc4f73a34
SSDEEP

3072:ULwTqCL0l1wtvwJF+u86dd0kLFNXZa8Jm0:cwTK1wVUF+n15

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea1c61b3067034527270379aca7b927b_JaffaCakes118

Files

ea1c61b3067034527270379aca7b927b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4e662be2160e1a30144c033e810fe27e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlGetPartW
StrSpnW
StrCmpW

user32

IsWindowVisible
GetKeyboardLayoutList
GetKeyboardLayoutNameW
GetMessageA
SystemParametersInfoW
GetUserObjectInformationA
IsCharLowerA
ShowWindow
GetClassNameW
InflateRect
OpenDesktopW
AdjustWindowRect
SetWindowTextW
CharUpperA
DragObject
OpenIcon
InsertMenuItemW
CreateAcceleratorTableW
ShowCaret
DestroyMenu
mouse_event
GetKeyState
RegisterClassA
HiliteMenuItem
DrawTextW
CheckRadioButton
HideCaret
IsDlgButtonChecked

ntdll

memset

comctl32

ImageList_Remove
ImageList_AddMasked
CreateToolbarEx

kernel32

LocalUnlock
GetCommProperties
CompareFileTime
CreateMutexA
GetSystemDefaultUILanguage
GetComputerNameExW
CreateFileMappingA
GetCurrentProcessId
GetLocaleInfoA
CreateFileA
GlobalAddAtomA
lstrlenW
lstrcatA
WaitForMultipleObjects
SetMailslotInfo
CreateWaitableTimerA
WaitForDebugEvent
GetShortPathNameA
lstrcpyA

gdi32

WidenPath
StartDocW
FillRgn
GetStockObject
SetBkColor
SetAbortProc
GetCharWidth32W
GetViewportOrgEx
PolyBezier
CreatePen
ScaleViewportExtEx
Polygon
DeleteDC

Exports

Exports

?XO_T_AWTBrro_YY_T@@YGXPAH@Z

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4e662be2160e1a30144c033e810fe27e

Headers

File Characteristics

Imports

shlwapi

user32

ntdll

comctl32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 78KB - Virtual size: 77KB

.idata Size: 7KB - Virtual size: 6KB

.data Size: 25KB - Virtual size: 148KB

.rsrc Size: 7KB - Virtual size: 8KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 78KB - Virtual size: 77KB

.idata
Size: 7KB - Virtual size: 6KB

.data
Size: 25KB - Virtual size: 148KB

.rsrc
Size: 7KB - Virtual size: 8KB

.reloc
Size: 1KB - Virtual size: 1KB