1335b6613d10f52d5e80fdef31d2807d_JaffaCakes118

General

Target

1335b6613d10f52d5e80fdef31d2807d_JaffaCakes118
Size

216KB
MD5

1335b6613d10f52d5e80fdef31d2807d
SHA1

8f983e288ef009e2d66a6adbc056c28530b79c3b
SHA256

a11776bf00b0a6193d4e2ecfadeeaead7f0cd7d72bda556431b87a3136d9a277
SHA512

b220f064f0640a7fc0cf076f1c4214b6d45a17cb6023b98d928efb4b2a2af9f476f704aa2c9eecc8fa83fcff2b14c02d4576b65036d06cc8ebafd24a978201cb
SSDEEP

3072:DLRELtXsmRnEjqCIDWDq4fDjTYZ+i7ozaUbqvkwTJU/TYZs3V/0+D5emthDn:DSLt8+nVKDq4LjT8m+7vkg6i+D5eu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1335b6613d10f52d5e80fdef31d2807d_JaffaCakes118

Files

1335b6613d10f52d5e80fdef31d2807d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

428b45c9077be287b59ea484c5e48e6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CloseDesktop
IsIconic
GetDlgItemTextA
DrawStateW
CharLowerW
GetKBCodePage
SetPropW
LoadBitmapW
MapVirtualKeyW
SendMessageW
PostQuitMessage
SetDlgItemTextW

msvcrt

iswascii

kernel32

LocalFree
LocalAlloc
MoveFileW
GetSystemDirectoryA
FreeLibrary
GetCommandLineA
GetFileSize
SetTimerQueueTimer
GetCPInfoExA
FormatMessageA
lstrcmpW

gdi32

SetBitmapDimensionEx
ExtTextOutA
GetTextCharsetInfo
CreateRoundRectRgn
SaveDC
OffsetViewportOrgEx
GetTextColor
SetMagicColors

Exports

Exports

?PtdxqQpkisfFiyprbgu@@YGPAED@Z
?SmlLyxyqjPwhxljsczzW@@YGKEM@Z
EomRFqqkpetbfD
_YjglnwBbvwftpUdgeqrfyc
?PlNPeel@@YGXM@Z

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 71KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

428b45c9077be287b59ea484c5e48e6e

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 71KB - Virtual size: 179KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 9KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 4KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 71KB - Virtual size: 179KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 9KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 4KB

.text
Size: 108KB - Virtual size: 112KB