fa0f1a3eee55fffe86b95605d0da1d2e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fa0f1a3eee55fffe86b95605d0da1d2e_JaffaCakes118
Size

111KB
MD5

fa0f1a3eee55fffe86b95605d0da1d2e
SHA1

fdcfc780b53b8033ebbecd23d73b36d1dc5e6966
SHA256

205e72ec802e54ade1671c0bdc8fe0918a7e5b164e50d75df8f854ac25a674af
SHA512

64126ec9756a63aed3d6612c1bdebae11a41fddc16bad56a44ba0a3f676abed84f95a2f2a5a7cfdf71f5c77e5ae9ac6f5db34f3b6e98f63ba49aa45bb89b2ed0
SSDEEP

3072:2O66bLuovoDXMa90twJiXLi9jw2fP+0bsl1o8II:3SL8aaiaONw2nql

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa0f1a3eee55fffe86b95605d0da1d2e_JaffaCakes118

Files

fa0f1a3eee55fffe86b95605d0da1d2e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9e4ade17077dd65e5d605d1d70aeaaac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

P:\krSV\psby\kckSuKZd.pdb

Imports

kernel32

lstrcmpiW
lstrlenW
HeapValidate
GetUserDefaultLCID
SetCommState
SetupComm
SystemTimeToFileTime
SetSystemTime
GetTimeZoneInformation
LoadLibraryW
GlobalAlloc
GetProcAddress
GlobalUnlock

gdi32

StretchDIBits
GetTextExtentPointA
RealizePalette
GetTextExtentPoint32A
GetWindowOrgEx
SetRectRgn
RectInRegion
CreateICW
FillRgn

user32

GetFocus
GetDC
GetPropW
UnloadKeyboardLayout
DialogBoxIndirectParamA
ShowScrollBar
MessageBoxA
UpdateWindow
DragObject
GetKeyState
DrawTextA
GetWindowLongW
IsCharUpperA
LoadCursorW

shlwapi

StrCmpNW

Exports

Exports

?RnNonoYIqqkadwtedYyo@@YGXD@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 942B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 97B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e4ade17077dd65e5d605d1d70aeaaac

Headers

File Characteristics

PDB Paths

Imports

kernel32

gdi32

user32

shlwapi

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.idata Size: 1024B - Virtual size: 942B

.edata Size: 512B - Virtual size: 97B

.temp Size: 76KB - Virtual size: 76KB

.data Size: 5KB - Virtual size: 17KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.idata
Size: 1024B - Virtual size: 942B

.edata
Size: 512B - Virtual size: 97B

.temp
Size: 76KB - Virtual size: 76KB

.data
Size: 5KB - Virtual size: 17KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 2KB