02b115de4c974c405a4b063572fe6322_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

02b115de4c974c405a4b063572fe6322_JaffaCakes118
Size

123KB
MD5

02b115de4c974c405a4b063572fe6322
SHA1

16f002c2cf4c049f1313340261afd6ea9c84b87b
SHA256

762563399d3ffb4d1f8e9e72762d6d611368e7908a17e54e071e7ea63677f7ca
SHA512

24c354b5feb6ce93fefb2e9d3e882b3e6f13605c36e61a73cdd9f68f79f43729c003322440b99e2e5a2e0b03d2552cba86e527a1d05b2f1323af7aff4e94a0cf
SSDEEP

3072:B9B6COO44D0PvB27+mGSa/2ihwcPyIX/pN1qczXZBUD:f187PQKmG/24PFBvp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02b115de4c974c405a4b063572fe6322_JaffaCakes118

Files

02b115de4c974c405a4b063572fe6322_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7b68d17db7207f30899d5ff023dad354

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

P:\UfTVd\ofFocx\FgvWxh.pdb

Imports

user32

GetDlgCtrlID
InsertMenuW
PostMessageA
HideCaret
GetDesktopWindow
MonitorFromPoint
SendInput
FillRect
DrawTextW
GetSysColorBrush
CopyRect
RemovePropW
LoadIconW

comdlg32

GetSaveFileNameW
PageSetupDlgW

comctl32

CreateStatusWindowW
ImageList_GetImageCount
ImageList_Remove
ImageList_Read

gdi32

CreateEllipticRgnIndirect
SetViewportOrgEx
CreateDIBSection
GetTextExtentPointA
SetDIBitsToDevice

kernel32

lstrlenA
lstrcmpiA
lstrcmpiW
AddAtomA
SetEvent
ExitProcess
GetModuleFileNameW
CreateFileMappingA
FileTimeToLocalFileTime
FormatMessageW
GetCurrentThread

Exports

Exports

?TTS_ynftssbby_rtmEB_YG@@YGXPAJM@Z
?GMJAUVI@@YGKPAM@Z
?YTXD_SM_FNOIA_KWh_y_@@YGPAE_ND@Z
?akh__ndaf@@YGFPAF@Z

Sections

.text
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 90KB - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 330B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b68d17db7207f30899d5ff023dad354

Headers

File Characteristics

PDB Paths

Imports

user32

comdlg32

comctl32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 512B - Virtual size: 160B

.code Size: 22KB - Virtual size: 21KB

.idata Size: 1024B - Virtual size: 950B

.data Size: 90KB - Virtual size: 422KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 330B

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 512B - Virtual size: 160B

.code
Size: 22KB - Virtual size: 21KB

.idata
Size: 1024B - Virtual size: 950B

.data
Size: 90KB - Virtual size: 422KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 330B

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 1KB