fbb4633adddddbe4b9b2965fe5e6af15_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fbb4633adddddbe4b9b2965fe5e6af15_JaffaCakes118
Size

233KB
MD5

fbb4633adddddbe4b9b2965fe5e6af15
SHA1

986db364ce6b9a00a37eba42a5b60760736aae72
SHA256

b72c4c9859c1dae21fbef8ca1332dd02c04d8dac294338edacce46685b8b6b9c
SHA512

4883a5d6ebfab83aee0cb2772c6666f06ee21e97bbbebdcc1997b3c18a2df677206b84a83faa75f18006578cdd9fffd6e2a4296bd8cc671fd7657825443c4f62
SSDEEP

6144:nydVZzRjNMKTPnnSrf/9TTB929F8Rj8MwB7q:yzZzRjNJnuP2vI+7q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbb4633adddddbe4b9b2965fe5e6af15_JaffaCakes118

Files

fbb4633adddddbe4b9b2965fe5e6af15_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f365b2a539b69d3fdc59136c70ab46da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
ChooseColorW
ChooseFontW

gdi32

CreateBitmap
CombineRgn
CreateDCW
ResizePalette
CreateFontIndirectW
GetTextCharsetInfo
RealizePalette
CreateCompatibleDC
TranslateCharsetInfo
GetDIBits
SetMapMode
SetPixel
SetTextColor
GetFontData
GetPixel
SetRectRgn
CreateFontW

user32

EnableMenuItem
InvalidateRgn
GetSubMenu
GetSysColor
CreateIconFromResource
CreateDialogParamA
MapVirtualKeyW
GetWindowTextLengthW
FillRect
GetDlgItemInt
DrawStateA
OemToCharBuffA
CloseDesktop
LoadIconW
ChildWindowFromPoint
LoadStringA
GetMenu
DestroyAcceleratorTable
RegisterWindowMessageA
OffsetRect
GetSystemMenu
ActivateKeyboardLayout
RegisterClassExA
RegisterClassA
GetUserObjectInformationW
DefDlgProcW
GetWindowLongA
IsCharLowerA
InsertMenuItemW
DrawFrameControl
ModifyMenuW
GetMenuItemRect
GetDialogBaseUnits
DestroyIcon
SetActiveWindow
SendInput
SetWindowTextA

kernel32

HeapCreate
GetUserDefaultUILanguage
LocalReAlloc
GetCommandLineA
SetSystemTimeAdjustment
lstrcpyW
CreateEventA
HeapWalk
GetExitCodeThread
LoadLibraryW
GetCommState
OpenFile
GetWindowsDirectoryW
GetThreadPriority
CreateSemaphoreA
GetSystemTimeAdjustment
GlobalMemoryStatusEx

Exports

Exports

?IUDFijfjkKLJFOIUofiuOFUiofOFYU@@YGKEPA_WG@Z

Sections

.text
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdt
Size: - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vsctn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f365b2a539b69d3fdc59136c70ab46da

Headers

File Characteristics

Imports

comdlg32

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 212KB - Virtual size: 212KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 3KB

.vdt Size: - Virtual size: 110KB

.vsctn Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 212KB - Virtual size: 212KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 3KB

.vdt
Size: - Virtual size: 110KB

.vsctn
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB