fc3c624f9d7016db264fa9c60b992b9f_JaffaCakes118

General

Target

fc3c624f9d7016db264fa9c60b992b9f_JaffaCakes118
Size

2.7MB
MD5

fc3c624f9d7016db264fa9c60b992b9f
SHA1

f99aeffb75a58c8dea8fb603f641af0048e41a1f
SHA256

dcba66a6b37f06f4ab0e3c7ed2101c55f480eee1f1d222f80c832933c0b729c1
SHA512

8302ce59b693ade5b71dec7f4dcfbd28ee6d4e4533b21dfcf7970b176387a288cb07e622d4394f59620a2ff66db8e190d2b5d140a3bf11a0aeaa4444419fc2d7
SSDEEP

49152:q8m+VOW8BF4Ne6EFklj8OBgZLMCFryjIrBYpPO7WOsIZYli96J:q8mVW8BF4Ne6EUf2xryjI2p2ivxi96J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc3c624f9d7016db264fa9c60b992b9f_JaffaCakes118

Files

fc3c624f9d7016db264fa9c60b992b9f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bca3bd0ee7509356b76fa122b667b7f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\qcxCthzr\EVBv\cAjbdiQ\yOvp\KuqDiaj.pdb

Imports

gdi32

ExtTextOutA
SetMapMode
CreatePenIndirect
Polygon
GetDIBColorTable
ScaleViewportExtEx
StretchDIBits
Polyline

kernel32

QueryPerformanceCounter
GetConsoleAliasExesLengthW
SizeofResource
SetCurrentDirectoryA
lstrcmpiA
GetSystemTimeAdjustment
GetPriorityClass
VirtualAlloc
IsBadReadPtr
IsDebuggerPresent
IsValidLocale
lstrcpynA
GetStdHandle

comctl32

CreatePropertySheetPageA
ImageList_Create
ImageList_ReplaceIcon

user32

ModifyMenuW
GetKeyNameTextW
wsprintfW
WaitForInputIdle
IsCharAlphaNumericW
MessageBoxExA
InsertMenuA
GetUserObjectInformationW
GetNextDlgGroupItem
LoadBitmapA
SetWindowPos
AppendMenuW
RegisterTasklist
TranslateAcceleratorW

Exports

Exports

?IrdrswwrzyttwmssMjbk@@YGPAMM@Z
?HspeoxgocQqzxoVmikxlad@@YGPA_NMPAJ@Z
?FvmxqijvsbydypuatdF@@YGNPAF@Z
?Zsjwywf@@YGG_N@Z
?LyHugYwpdncd@@YGGPAHG@Z

Sections

.itext
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 7.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bca3bd0ee7509356b76fa122b667b7f2

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

comctl32

user32

Exports

Exports

Sections

.itext Size: 21KB - Virtual size: 20KB

.text Size: 6KB - Virtual size: 6KB

.data Size: 6KB - Virtual size: 7.0MB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

.reloc Size: 2KB - Virtual size: 1KB

.itext
Size: 21KB - Virtual size: 20KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 6KB - Virtual size: 7.0MB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

.reloc
Size: 2KB - Virtual size: 1KB