fbe73115d6a5e87632e1048d4b1c7b89_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fbe73115d6a5e87632e1048d4b1c7b89_JaffaCakes118
Size

2.5MB
MD5

fbe73115d6a5e87632e1048d4b1c7b89
SHA1

f181a58c3845322654837e79c8da3c9e491c0217
SHA256

06f334bdc10d7b63f771c9d99991c8ceb0da027bac705086d9f846b4850de8e9
SHA512

93efb6f9e94a6980d00ca42e0c8ebe54528862cc9eac4150f06d4b6a87dce19f2cc6eebc46fa6eb102e60339166e5f541a5248c749d707368c991c300c11e9c6
SSDEEP

49152:IAxDAklEBpb9cNgJoUdsRpondy/dGSOsV2+G9Qpot2ANLusshmSw:IAxDfEBpb9yV3oA3V2XGKt2ANLuDISw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbe73115d6a5e87632e1048d4b1c7b89_JaffaCakes118

Files

fbe73115d6a5e87632e1048d4b1c7b89_JaffaCakes118
.exe windows:5 windows x86 arch:x86

31f3bc3192f9560fd9894bf03b236fe3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoInitialize

kernel32

lstrlenW
OpenSemaphoreW
SetHandleInformation
GetACP
lstrcpynW
GetTapeStatus
RemoveDirectoryA
IsValidCodePage
HeapCreate
FormatMessageA
GetModuleFileNameA
LocalLock
OpenFileMappingA
FileTimeToSystemTime

gdi32

DeleteColorSpace
GetColorSpace
EndPage
CreatePalette
CreateEllipticRgnIndirect
StartDocW
GetRgnBox
RoundRect
CreateBitmap

comctl32

ImageList_Read
ImageList_LoadImageW
ImageList_ReplaceIcon

shlwapi

PathGetCharTypeW
PathGetArgsW
StrCpyW

comdlg32

ChooseColorW
PrintDlgW

user32

IsDlgButtonChecked
AdjustWindowRectEx
GetSystemMetrics
DialogBoxParamA
IntersectRect
GetWindowLongA
GetDC
SendInput
IsWindow
GetSysColor
DialogBoxIndirectParamA
SetWindowTextA
GetUserObjectInformationA
ScreenToClient
GetClipCursor

Exports

Exports

?YCljgyuxvvZanmhllfetnb@@YGPAHF@Z
_XsYosqznpelhrJksP
?CDKhREaQXNXwFmmez@@YGPAXD@Z
?_QhvczvmZKdrweqMo@@YG_NH@Z
_ZvbedeslzlYjdgw

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vars
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 20.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31f3bc3192f9560fd9894bf03b236fe3

Headers

File Characteristics

Imports

ole32

kernel32

gdi32

comctl32

shlwapi

comdlg32

user32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.itext Size: 16KB - Virtual size: 15KB

.vars Size: 2KB - Virtual size: 2KB

.data Size: 6KB - Virtual size: 20.5MB

.rsrc Size: 2.5MB - Virtual size: 2.5MB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 5KB - Virtual size: 4KB

.itext
Size: 16KB - Virtual size: 15KB

.vars
Size: 2KB - Virtual size: 2KB

.data
Size: 6KB - Virtual size: 20.5MB

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

.reloc
Size: 4KB - Virtual size: 3KB