07d7d567c80e3c3627b2913d19ac191e_JaffaCakes118

General

Target

07d7d567c80e3c3627b2913d19ac191e_JaffaCakes118
Size

110KB
MD5

07d7d567c80e3c3627b2913d19ac191e
SHA1

42025f001a5bdb050d94e78c890b6cfe9a293884
SHA256

d9164ec82ffafa0233474311dc1703b5b50061a8789b772c214f0bd84b71ff3d
SHA512

f60cd11304d98df00bfe4a37ef33e61674be8547d86b89c4cce119be93cc1c1be8c7f09e188a54ca7aed39d2b6d88e511699b6fa2b2aa3ffc5b87ff7616d39e8
SSDEEP

3072:Qveyj7fuo+bRjeWw7tJHCMKGMJNugkgelggKlu:M5eb5er6Jlkg5lu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07d7d567c80e3c3627b2913d19ac191e_JaffaCakes118

Files

07d7d567c80e3c3627b2913d19ac191e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ee14465ab472520fc1a331b3c945957b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\qVkKTo\Vczv\cXbRbm.pdb

Imports

comdlg32

GetSaveFileNameW
GetFileTitleW
PageSetupDlgW
ChooseColorW

user32

SystemParametersInfoA
LoadCursorW
SetScrollRange
RegisterWindowMessageW
WindowFromDC
GetFocus
LoadCursorA
DialogBoxParamW
DefWindowProcA
LoadStringW
DialogBoxIndirectParamW
SendDlgItemMessageW
ToUnicodeEx

kernel32

GetModuleHandleW
GetProcAddress
SetThreadPriority
SetLocalTime
GetSystemDirectoryW
GetTickCount
CreateFileMappingA
GlobalFlags
SystemTimeToFileTime
lstrlenW
lstrcmpW
GetFullPathNameW

gdi32

CreateBitmapIndirect
CreateFontIndirectW
DeleteDC
GetTextCharsetInfo
OffsetViewportOrgEx
CreatePolygonRgn
Polygon
ExtFloodFill

Exports

Exports

?WjHgmjQtCj@@YGJH@Z
?axZNWae@@YGXDF@Z
?ahnypCYlXwAgoIbHgMxj@@YGPAEPAMK@Z
?ytfERYo@@YGJ_N@Z
?pwAlwZzmpjj@@YGPADK@Z

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 221B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee14465ab472520fc1a331b3c945957b

Headers

File Characteristics

PDB Paths

Imports

comdlg32

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 5KB - Virtual size: 13KB

.crt Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 221B

.rsrc Size: 77KB - Virtual size: 77KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 5KB - Virtual size: 13KB

.crt
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 221B

.rsrc
Size: 77KB - Virtual size: 77KB

.reloc
Size: 2KB - Virtual size: 1KB