f691c28d848500965d21ffea5cae7e7a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f691c28d848500965d21ffea5cae7e7a_JaffaCakes118
Size

39KB
MD5

f691c28d848500965d21ffea5cae7e7a
SHA1

386fb7128dd9bd61c1a8674c765bc622226ea65b
SHA256

7f7dc4a44e9e212840058d5c7d9109242cd85e511cdd6195b402aff3560ebbb0
SHA512

7ee6aa6b5e06372c6b12a9b1d3b17f002dacffa85cf7c52cb143e5532977a7ef479659cc19097e27686f28d160f588a93e27ab6b2da2287b8e1d85448376ffdf
SSDEEP

768:EbB4CJEQAUkwe3qGkjW4WafZl70N/R+GhqrGDnKh3Vcs9nU8B:EbuNUkwe3fkHSNp4aDnKPd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f691c28d848500965d21ffea5cae7e7a_JaffaCakes118

Files

f691c28d848500965d21ffea5cae7e7a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

113aa9fbc8503ee45934bdfe780ec5fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\vibNHifoN\rfmNnzmay\rjzLYgEb.pdb

Imports

gdi32

GetTextCharsetInfo
PtVisible
SetPixel
CreatePalette
CreateICW
GetTextColor
CreateHalftonePalette
WidenPath
Rectangle
GetObjectW
GetNearestPaletteIndex
CreateDIBSection
EnumFontFamiliesExW
GetBitmapBits
PtInRegion
SetWindowOrgEx
SetROP2
GetDIBits

shlwapi

StrCatBuffW

kernel32

GetSystemTimeAdjustment
GetCurrentThreadId
GlobalGetAtomNameA
GetModuleHandleA
LoadLibraryW
FindNextChangeNotification
SetEndOfFile
GetThreadContext
GetWindowsDirectoryA
GetProcAddress
GlobalMemoryStatus
FileTimeToSystemTime
CreateThread
GetTimeFormatA
GetFileAttributesExW
GlobalDeleteAtom
SetNamedPipeHandleState
InitializeCriticalSection
WaitCommEvent
SetThreadPriority
GetACP

user32

GetSysColorBrush
CharUpperA
ShowOwnedPopups
GetDlgItem
ModifyMenuW
SendMessageA
CharLowerA
SendDlgItemMessageA
ShowWindowAsync
SystemParametersInfoW
GetDialogBaseUnits
DialogBoxParamW
GetScrollInfo
SetUserObjectInformationW
WaitForInputIdle
LoadAcceleratorsW
DestroyIcon
GetNextDlgGroupItem
IsCharAlphaNumericA
GetScrollPos
GrayStringW
GetDCEx
TranslateAcceleratorA
CloseDesktop
DefWindowProcW
LoadMenuW
CharNextW
RegisterClassA
SetMenuDefaultItem
MapVirtualKeyA
DrawTextA
AppendMenuW
CreateWindowExA
EnumThreadWindows
IsCharAlphaW
GetLastActivePopup
FindWindowExW
SetScrollInfo
EnumChildWindows
GetSystemMetrics
SetWindowTextA
CreatePopupMenu
wsprintfA

msvcrt

_controlfp
__set_app_type
towlower
__p__fmode
ftell
__p__commode
fclose
_amsg_exit
_initterm
tolower
wcslen
wcstombs
calloc
floor
wcscoll
putchar
clearerr
_acmdln
exit
_ismbblead
_XcptFilter
_exit
qsort
_cexit
__setusermatherr
__getmainargs

Exports

Exports

?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?GlobalTimerA@@YGMK~U
?DeleteValueA@@YGPAIPAJ~U
?CancelHeaderEx@@YGIEPAMGI~U

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kip
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticy
Size: 512B - Virtual size: 399B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heap
Size: - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

113aa9fbc8503ee45934bdfe780ec5fb

Headers

File Characteristics

PDB Paths

Imports

gdi32

shlwapi

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.ticx Size: 2KB - Virtual size: 2KB

.kip Size: 512B - Virtual size: 488B

.ticy Size: 512B - Virtual size: 399B

.zdata Size: 512B - Virtual size: 244B

.data Size: 2KB - Virtual size: 2KB

.heap Size: - Virtual size: 44KB

.rsrc Size: 55KB - Virtual size: 55KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.ticx
Size: 2KB - Virtual size: 2KB

.kip
Size: 512B - Virtual size: 488B

.ticy
Size: 512B - Virtual size: 399B

.zdata
Size: 512B - Virtual size: 244B

.data
Size: 2KB - Virtual size: 2KB

.heap
Size: - Virtual size: 44KB

.rsrc
Size: 55KB - Virtual size: 55KB

.reloc
Size: 1KB - Virtual size: 1KB