2de6c7f46ede5d0e08199d5b14b16091_JaffaCakes118

General

Target

2de6c7f46ede5d0e08199d5b14b16091_JaffaCakes118
Size

109KB
MD5

2de6c7f46ede5d0e08199d5b14b16091
SHA1

d7e2fe649cdabec6e93eda459755f656c6f903a6
SHA256

85be38fa7f85297dc0c4fc3fb15ee4cbfc6b39fb70fc2375aa9b897da048b6d7
SHA512

1aae1c46a65ba8aebe4410f13a51f5cdcb6c5a728477e30817a7df5b3c081e09a2f5479fc093018992db6358c4806fff7d270321436fb6cf48e757b31d3b12e0
SSDEEP

1536:c4OIF9vLVA2wszs/zcBJwT0K5I7V6x303kRk3+4oifpWLydktInTKQqf7cx:3OKA2/zhgT0KG773kRk3v1HqDu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2de6c7f46ede5d0e08199d5b14b16091_JaffaCakes118

Files

2de6c7f46ede5d0e08199d5b14b16091_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3f37e1527a023e9eee080c8eac1db85a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\gIyhnqm\hgza\awii.pdb

Imports

user32

LoadCursorW
InsertMenuItemW
CreateIconFromResource
GrayStringW
GetProcessDefaultLayout
GetForegroundWindow
SetCaretPos
DialogBoxIndirectParamA
LoadIconW
IsCharAlphaW
SendMessageTimeoutW
RedrawWindow

gdi32

CreateFontIndirectW
CreateSolidBrush
SetPixel
RemoveFontResourceW
CreateICW
Ellipse
GetObjectA
GetTextFaceW

comctl32

ImageList_Read
CreateStatusWindowW
CreateToolbarEx
ImageList_ReplaceIcon

kernel32

GetSystemDefaultLCID
GetLastError
GlobalReAlloc
GetModuleHandleW
GetCommTimeouts
GetCommandLineA
ReleaseMutex
lstrlenW
FindResourceExA
lstrcmpW
GetProcAddress
SetEvent
GlobalFindAtomW
GetFileTime
GetModuleHandleA
GetTickCount

Exports

Exports

?ixvwyBmv@@YGPAXI@Z
?ogKlcxdKkneyR@@YGDI@Z
?rIfftymmgey@@YGPAFD@Z
?SgkvxEp@@YGHPAE@Z
?MCrqqnDgVatgp@@YGEPAGG@Z

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 218B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f37e1527a023e9eee080c8eac1db85a

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 18KB

.data Size: 4KB - Virtual size: 8KB

.crt Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 218B

.rsrc Size: 78KB - Virtual size: 78KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 4KB - Virtual size: 8KB

.crt
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 218B

.rsrc
Size: 78KB - Virtual size: 78KB

.reloc
Size: 2KB - Virtual size: 1KB