0921bd1623b80976d0d37b5fe82bc1ae_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0921bd1623b80976d0d37b5fe82bc1ae_JaffaCakes118
Size

72KB
MD5

0921bd1623b80976d0d37b5fe82bc1ae
SHA1

5353b5f3ee6757769c8f5c214508d24ee32d9cb5
SHA256

383d81acb50af014d083208ecdaee80f048622b526d36d65f6ce6254d137f525
SHA512

88404ad80efb3c013b7f3633214efc30f9d628e2371186f55ba3061592ca212ea56f7ca872778dc4f6f52feccf4c7ee87c17a39123e0bd3a775ac1cb683b9be7
SSDEEP

1536:5HxpUVrora6tj5HT/HaK1N7dMvRVNZqD/K:5RIor1D/HDn7WvXNZqD/K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0921bd1623b80976d0d37b5fe82bc1ae_JaffaCakes118

Files

0921bd1623b80976d0d37b5fe82bc1ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dce3d0e821f811c0a9ec81c04972eff3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationA
SHGetSpecialFolderLocation
Shell_NotifyIconA
Shell_NotifyIconW
DragQueryFileA

user32

GetWindowDC
GetDCEx
PostQuitMessage
CheckMenuItem
LoadIconA
CharLowerA
GetSubMenu
SetClassLongA
GetKeyboardLayout
UnregisterClassA
SetScrollPos
SetParent
RemoveMenu
SetWindowTextA
ClientToScreen
PeekMessageW
RegisterClassA
OffsetRect
DestroyMenu
SetFocus
MoveWindow
GetClientRect
InvalidateRect
EnableWindow
GetWindow
GetForegroundWindow
GetKeyState
InflateRect
GetScrollInfo
GetClassInfoA
CallWindowProcA
SetScrollInfo
GetWindowTextA
IsChild
GetWindowPlacement
DefWindowProcA
SetPropA
GetCursorPos
SetActiveWindow
DispatchMessageA
RegisterClipboardFormatA
DeleteMenu
DestroyWindow
GetMenuState
CloseClipboard
GetWindowTextLengthA
ShowOwnedPopups
EnumChildWindows
InsertMenuA
DrawAnimatedRects
GetActiveWindow
SetCapture
GetFocus
GetCapture
GetMessagePos
GetDC
CharUpperBuffA
GetScrollRange
DrawEdge
CallNextHookEx
GetKeyboardLayoutNameA
DestroyIcon
FindWindowA
DrawMenuBar
GetKeyboardLayoutList
FrameRect
RedrawWindow
GetTopWindow
CreateWindowExA
SendMessageA
SetWindowPos
IsIconic

kernel32

SetHandleCount
GetACP
VirtualAlloc
GetCurrentThreadId
ExitProcess
VirtualAllocEx
SetFilePointer
SetLastError

gdi32

GetPaletteEntries
GetDIBits
GetTextColor

Exports

Exports

_2Pc9_piu@16
_d7OCPwqa
_Tfjt2Dr9qqN
_eeNjHfMAoIvRpW
_QVOdVkpuow65M
_En974tqkpZ
WMreObsr
AmKGNu@20
_TUqqwQm4sqWE@20
Ykj8Rs6b
_rvhtDWDVT4fbT@4
_qMVy36nl_w8r
_RinWu
_S4bN9Rj
_XNVPNbn11N
UwmS0qUxlx5h@12
6noNGfSbbJ3@16
WlUMqReYS@12
MNCfUxeicb

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dce3d0e821f811c0a9ec81c04972eff3

Headers

File Characteristics

Imports

shell32

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 95KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 95KB

.rsrc
Size: 1KB - Virtual size: 1KB