fe3fb2e929f95ed03233e7a4d622a28d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe3fb2e929f95ed03233e7a4d622a28d_JaffaCakes118
Size

160KB
MD5

fe3fb2e929f95ed03233e7a4d622a28d
SHA1

9fdeeda69afd275b8b127d3b2fddbd1e9a1a8dab
SHA256

b09b50cee51cf2e021c5d528ca26054821e97b7ec9d0e19dd9016a4cba83f08b
SHA512

bdb408624e49942029bc88cc24d5d01d579bd3ca777f9ea38ab9c1be1ee7e57251e28335715e57ffc43cf7c8a0782da4c466661edb43c5f76c5dfbf337516933
SSDEEP

3072:3GAWE/PYYsE3sW1O0mUZycdsbIBKhbLVYgp8Ebpt6F6j/dnFqTo:3GWp3Y0mCyceIBKh2BEN4F6l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe3fb2e929f95ed03233e7a4d622a28d_JaffaCakes118

Files

fe3fb2e929f95ed03233e7a4d622a28d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

90fdf7ea60460e78005a48407f46047c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Y:\Msfk\bdRo\OyWrtvf\eABkjicC.pdb

Imports

comdlg32

GetFileTitleW
PrintDlgExW
PageSetupDlgW
ChooseFontW

user32

InternalGetWindowText
SetScrollPos
GetDlgItemInt
GetMenuItemCount
SystemParametersInfoA
GetKeyboardLayoutNameA
CreatePopupMenu
CharUpperBuffW
GetClassLongW
TranslateAcceleratorW
CreateWindowExA
DrawIcon
CharLowerA
GetMessagePos

shlwapi

StrToInt64ExW

comctl32

ImageList_Destroy
ImageList_Write
InitCommonControlsEx
ImageList_Read

kernel32

LocalLock
ExitProcess
GetConsoleWindow
GetCurrentProcessId
LockResource
GetTimeFormatA
IsValidLocale
GetTickCount
ExitThread
GetUserDefaultUILanguage
GetWindowsDirectoryW

gdi32

MoveToEx
GetTextCharsetInfo
SetViewportExtEx
CreateRoundRectRgn
StretchBlt

Exports

Exports

?bvunm_l_j_cel@@YGXFG@Z
?nqkvP_Tyknuy@@YGXHM@Z
?fimtmU_Z_LIsCZ@@YG_NPAMPAD@Z
?O_EDQI__PxS__m_n@@YGXPAHPAF@Z
?JMMw_ijvz@@YGPAXPAEH@Z
?KOSQUqdn___k__@@YGPADD@Z
?JD_QYH_QJJOjnW_UOTWyk_@@YGNH@Z
?p___uc_EBAwkja_uifx@@YGMF@Z
?HGv_SM_Hfip@@YGHFPAJ@Z
?LEFRHOGWfykxhqVDjcivz@@YGPAXK_N@Z

Sections

.text
Size: 54KB - Virtual size: 385KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pacdat
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90fdf7ea60460e78005a48407f46047c

Headers

File Characteristics

PDB Paths

Imports

comdlg32

user32

shlwapi

comctl32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 54KB - Virtual size: 385KB

.data Size: 31KB - Virtual size: 31KB

.rdata Size: 30KB - Virtual size: 30KB

.idat Size: 16KB - Virtual size: 15KB

.pacdat Size: 16KB - Virtual size: 15KB

.rsrc Size: 9KB - Virtual size: 12KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 54KB - Virtual size: 385KB

.data
Size: 31KB - Virtual size: 31KB

.rdata
Size: 30KB - Virtual size: 30KB

.idat
Size: 16KB - Virtual size: 15KB

.pacdat
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 9KB - Virtual size: 12KB

.reloc
Size: 2KB - Virtual size: 1KB