eefc6ea4ab5bb36933f6e9d686809307_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

eefc6ea4ab5bb36933f6e9d686809307_JaffaCakes118
Size

144KB
MD5

eefc6ea4ab5bb36933f6e9d686809307
SHA1

187a859fbe77b2e979cbd9f90359a2abd8a0baf1
SHA256

3a9b3db52653d07f17f2698130e9ec66e3621487f880ba3cb33bf5e7b8504d7d
SHA512

734b778df769ee6db96e0fe59c5413fc57b0a7c145432e3f8472ca3d97bb1a7acf27d85991b73b37a5661cee2a21c40cebb4490a3c1d21122b278fe8ebc9194a
SSDEEP

3072:wlMyhq5+MEx2WNsdn/1vB8ocpRI6yupCJ7/iCsG:SMpW0pdN587bI6yP/i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eefc6ea4ab5bb36933f6e9d686809307_JaffaCakes118

Files

eefc6ea4ab5bb36933f6e9d686809307_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac63fdbb184ccf0e0992f0c35f9f87a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClassLongA
UnhookWindowsHookEx
wsprintfA
DestroyMenu
CallNextHookEx
GetScrollInfo
FillRect
SetClassLongA
SetWindowLongW
InvalidateRect
GetWindow
GetDC
GetWindowTextLengthA
IsWindowUnicode
GetMenuItemCount
ReleaseDC
CharNextW
CallWindowProcA
TranslateMessage
GetCursor
SetClipboardData
DestroyWindow
CreateMenu
GetTopWindow
GetSysColorBrush
GetMenuItemID
WaitMessage
SendMessageA
LoadBitmapA
GetKeyboardType
EmptyClipboard
ShowWindow
WindowFromPoint
GetWindowPlacement
CharUpperBuffA
SetScrollRange
GetSysColor
OpenClipboard
SetWindowTextA
CloseClipboard
CreateWindowExA
SetScrollPos
CharNextA
SetCursor
GetPropA
LoadCursorA
SetWindowPos
MoveWindow
IsIconic
GetKeyboardLayout
IsDlgButtonChecked
GetKeyState
GetMenu
GetForegroundWindow
GetWindowLongA
DestroyCursor
PeekMessageW
LoadIconA
SystemParametersInfoA
PtInRect
InflateRect

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA

gdi32

SelectPalette
GetBkMode
SetBkColor
GetCurrentPositionEx

kernel32

GetLocalTime
DeleteCriticalSection
lstrcmpA
SizeofResource
SetErrorMode
WaitForSingleObject
VirtualAlloc
VirtualQuery
GetModuleFileNameA
CreateEventA
CloseHandle
CreateThread
VirtualFree
GetUserDefaultLCID
SetLastError
SetThreadLocale
GetVersion
LoadLibraryA
EnumCalendarInfoA
VirtualAllocEx
LockResource
ExitProcess

Exports

Exports

_oLKbD@12
a_bHK@4
_SaTy2xDN1x
_Ltin8Wb36QR@4
_XsH4aooLFR2C
_Dff3kYU4CilS
_nZjUIR1Bws1Z9H
_CPux1B5iBU9D@8
Dl9UwDNza
qLhjyK5YhVINXF@8
_RUcQCj
_Bxe2QEjLCSEU9

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 699B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.acdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac63fdbb184ccf0e0992f0c35f9f87a4

Headers

File Characteristics

Imports

user32

comdlg32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 10KB - Virtual size: 110KB

.data Size: 109KB - Virtual size: 108KB

.edata Size: 1024B - Virtual size: 699B

.acdata Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 10KB - Virtual size: 110KB

.data
Size: 109KB - Virtual size: 108KB

.edata
Size: 1024B - Virtual size: 699B

.acdata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 8KB