26a9cd86fc8f82be13efdfc4aef3ea7d_JaffaCakes118

General

Target

26a9cd86fc8f82be13efdfc4aef3ea7d_JaffaCakes118
Size

139KB
MD5

26a9cd86fc8f82be13efdfc4aef3ea7d
SHA1

85532346b15aeb7d442db3720cd73346d0e1c7e5
SHA256

7ebdf4f6c727711e3791e7151c8b4063ecb88a7df825de5dcc9f5eb513f73b81
SHA512

277912352f7baa92d1df8c6d2971a092dd25439f1e0f0fe5f8843205525933b475f37121c2a30f52801435cf9f5dee17d99cb2f116494531053e8886ec04287d
SSDEEP

3072:4V/AY/0Wichlbd9ZAbwM/dJBzAL9+6NsER85CHoI:o/LHibB/zGo6pR87I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26a9cd86fc8f82be13efdfc4aef3ea7d_JaffaCakes118

Files

26a9cd86fc8f82be13efdfc4aef3ea7d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a9df9524b1ff22b5a9b2f416f8d6d575

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

G:\YOlPN\wqhobdq\lyjpO\khypj\HiTtqzs.pdb

Imports

comctl32

ImageList_Create
ImageList_Write
ImageList_GetIcon

user32

GetWindowTextLengthA
RemovePropW
GetMenuDefaultItem
wsprintfW
DialogBoxParamA
GetKeyNameTextW
VkKeyScanW
SetScrollInfo
DrawStateW
SendNotifyMessageW
GetMenu
wvsprintfA

kernel32

GetDateFormatW
lstrcpyA
GetWindowsDirectoryW
GlobalHandle
SetCommTimeouts
UnlockFile
GetSystemDefaultUILanguage
FlushViewOfFile
SetNamedPipeHandleState
lstrlenW
GetModuleFileNameW
GetPriorityClass

comdlg32

GetSaveFileNameW
ReplaceTextW

shlwapi

StrCatBuffW

gdi32

CreateBitmap
SetViewportOrgEx
GetTextExtentPoint32A
SetBkColor
DeleteDC
CreateEllipticRgnIndirect
AddFontResourceW
GetSystemPaletteUse

Exports

Exports

?pIxykzhnkwRwasj@@YGFPAJI@Z
?KemoHKph@@YGIMK@Z

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9df9524b1ff22b5a9b2f416f8d6d575

Headers

File Characteristics

PDB Paths

Imports

comctl32

user32

kernel32

comdlg32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.idata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 81KB

.edata Size: 1KB - Virtual size: 1KB

.rsrc Size: 98KB - Virtual size: 98KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 28KB - Virtual size: 27KB

.idata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 81KB

.edata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 98KB - Virtual size: 98KB

.reloc
Size: 4KB - Virtual size: 3KB