f71fb46d15c40d5097d7517f1ff4dbf1_JaffaCakes118

General

Target

f71fb46d15c40d5097d7517f1ff4dbf1_JaffaCakes118
Size

164KB
MD5

f71fb46d15c40d5097d7517f1ff4dbf1
SHA1

4135cbea0bf0c0cd4d0521dfb43fffdc70b9b702
SHA256

355de5d707ba2e1335f157587361d6101c6b44250e64f7156bdb3ffbb4d5673c
SHA512

4891981240c3885c3c0ae8e5c44f803e7d4ef27dd9f7e310c0b26e8894312dc20e460feaeab5545ae2a5bb06568b4c61ead77a2cf910c3a09cff0ae08ece4fd5
SSDEEP

3072:lmJ7MkqJJZhVThpPCL5vU1ABoJ/HTTCL372BXm:W7MkqJJZhVVRS5vBGTTCL3SBXm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f71fb46d15c40d5097d7517f1ff4dbf1_JaffaCakes118

Files

f71fb46d15c40d5097d7517f1ff4dbf1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

402bb9e5ef1c9a61f1a88fa6d67001de

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

V:\lJgymxo\obwnQaWy\sflwmvh.pdb

Imports

user32

GetSubMenu
TrackPopupMenu
GetSysColorBrush
SetWindowTextW
DialogBoxParamW
ClientToScreen
GetParent
IsZoomed
SendDlgItemMessageA
ShowWindowAsync
SetMenuItemBitmaps
GetMenuCheckMarkDimensions

kernel32

GetSystemDefaultLangID
ResumeThread
LoadLibraryA
IsDBCSLeadByteEx
DefineDosDeviceW
CreateDirectoryW
CompareFileTime
GetWindowsDirectoryA
GetTimeFormatA
lstrcmpA
GetProcAddress
CreateFileMappingA
EnumResourceNamesW

gdi32

GetObjectA
SetBkMode
CreateSolidBrush
StartPage
GetWindowOrgEx
SetBitmapDimensionEx
GetDIBColorTable
CreateDIBitmap
Polyline

Exports

Exports

?TrevRxumcqqGBgObWapxo@@YGFPAD@Z
?bjultfnpzONpoijxeRMv@@YGHMPAF@Z
?eqsVsHzavzbjgIn@@YGG_NH@Z
?gsjTZGhjrgmruPHnrJpS@@YGDK_N@Z
?ixcdepTaOaKqlz@@YGFPAKH@Z
?yfuanGKkMuJDRulh@@YGNEH@Z
?cfTRdeGjfk@@YGHIE@Z

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 902B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 6.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

402bb9e5ef1c9a61f1a88fa6d67001de

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 1024B - Virtual size: 902B

.data Size: 2KB - Virtual size: 6.7MB

.rsrc Size: 2.5MB - Virtual size: 2.5MB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 1024B - Virtual size: 902B

.data
Size: 2KB - Virtual size: 6.7MB

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

.reloc
Size: 4KB - Virtual size: 3KB