03aaca57813a416bf4f7477ceea92712_JaffaCakes118

General

Target

03aaca57813a416bf4f7477ceea92712_JaffaCakes118
Size

99KB
MD5

03aaca57813a416bf4f7477ceea92712
SHA1

4dc9b8951b8f3f19239bccd8d8ffa1c3f750e822
SHA256

f5d20472f7839e3f3cf4aca33fd9ae9aa94d13f47960650336212a47aefd46a3
SHA512

cb81e9ff606f6fae7645ff44b3c63ddc5c2715db42624af2e49e8a584dc422445dab7e56fede299cb7e17ff01a383e7c8a9046bc3a2fe000990aaf9df6f4938d
SSDEEP

3072:bc7xEzLvKvx7aMQjQ0QqLHKHGbZ4v/VW6:boILvK57gcq2H6a

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03aaca57813a416bf4f7477ceea92712_JaffaCakes118

Files

03aaca57813a416bf4f7477ceea92712_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e2560d504007e1fb91afa1181f77e64d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageTime
GetDlgItemTextA
CharToOemBuffA
CharToOemW
AdjustWindowRect
SetWindowTextW
ClipCursor
RemovePropW
GetMenuStringA
GetScrollRange
GrayStringW
DialogBoxIndirectParamW
ScrollWindow
SendMessageW

kernel32

TryEnterCriticalSection
ResetEvent
IsValidLocale
GlobalDeleteAtom
CreateFileMappingW
FindNextChangeNotification
GlobalGetAtomNameW
GetVersion
GetTimeFormatW
HeapSize
SetTimerQueueTimer
GetModuleHandleW

gdi32

IntersectClipRect
CreateEllipticRgnIndirect
CreateSolidBrush
PathToRegion
GetPixel
StretchDIBits

Exports

Exports

_JjpgtmNzx_cZAnalapmq@4
_LhrbxjmuM_fbqpem@12
_PAjDsjib_tNjytAw@12
_XqhPeejy_axiutmt_benz@4
_GUlskuPv_wmojvdr@16
_BupxkYjqh_ydKbtqsaC_fj@16
_ZauShdGJ_nortdMp_gaQ@4

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pack0
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.resdat
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memo
Size: 1024B - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2560d504007e1fb91afa1181f77e64d

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.pack0 Size: 30KB - Virtual size: 30KB

.resdat Size: 5KB - Virtual size: 4KB

.dat Size: 6KB - Virtual size: 6KB

.memo Size: 1024B - Virtual size: 133KB

.rsrc Size: 30KB - Virtual size: 30KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 20KB - Virtual size: 20KB

.pack0
Size: 30KB - Virtual size: 30KB

.resdat
Size: 5KB - Virtual size: 4KB

.dat
Size: 6KB - Virtual size: 6KB

.memo
Size: 1024B - Virtual size: 133KB

.rsrc
Size: 30KB - Virtual size: 30KB

.reloc
Size: 5KB - Virtual size: 5KB