fffcee9cd7fe30e7379fb704ffea6969_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fffcee9cd7fe30e7379fb704ffea6969_JaffaCakes118
Size

174KB
MD5

fffcee9cd7fe30e7379fb704ffea6969
SHA1

308e1f3cc02506f1734033aaa58be7388a4eeac1
SHA256

4ba7f41d8b227c110492260f910fb6b3f0011d8c235dbac59faec631db74d21d
SHA512

79cab1c40eb778bfa8e9b10073f3820b68e6d002dacfebaee6b2d3a253b3b320958192f1d38bd8674410d9af8d8acba4b35d3138d6b8508e788330678f937def
SSDEEP

3072:LtBCufWu6qbtUt56i85z03f7V9hI01q5JSICfFXlMwjw7T:BBn6oQ6i85z03f1BtfFX+n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fffcee9cd7fe30e7379fb704ffea6969_JaffaCakes118

Files

fffcee9cd7fe30e7379fb704ffea6969_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fdb35de2dea0fc291ff1a1f768ee5a73

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\pdxny\czJFc\grfmnUR\BeayWf.pdb

Imports

gdi32

SetDIBColorTable
CreateCompatibleDC
PatBlt
CreatePalette
CreateFontIndirectW
Rectangle

comctl32

CreatePropertySheetPageA
PropertySheetW
ImageList_Read

shlwapi

StrCmpNW

user32

IsCharUpperA
ToUnicodeEx
IsCharAlphaNumericA
ReleaseDC
GetMenuContextHelpId
GetPropW
GetMonitorInfoW
ShowScrollBar
SendInput
GetWindowDC
EnumWindows
GetWindowLongW
GetSysColor

kernel32

GetShortPathNameW
SetEvent
lstrlenW
GetProcAddress
MoveFileA
GetOEMCP
GlobalAddAtomW
ResetEvent
GetThreadLocale
LoadLibraryW
GlobalGetAtomNameW
IsValidLocale
lstrcmpA
lstrcmpiW

comdlg32

GetFileTitleW
CommDlgExtendedError

Exports

Exports

?VlrcqKJklPQs@@YGXPAFH@Z
?bzvrrSm@@YGIPAGK@Z
?fHtqrirtwiutdfwxMfh@@YGPAKPAFPAI@Z

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdb35de2dea0fc291ff1a1f768ee5a73

Headers

File Characteristics

PDB Paths

Imports

gdi32

comctl32

shlwapi

user32

kernel32

comdlg32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 168B

.temp Size: 139KB - Virtual size: 139KB

.data Size: 5KB - Virtual size: 85KB

.crt Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 16KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 168B

.temp
Size: 139KB - Virtual size: 139KB

.data
Size: 5KB - Virtual size: 85KB

.crt
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB