3d5b7560996ca95c5c7af18b65ca87fc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d5b7560996ca95c5c7af18b65ca87fc_JaffaCakes118
Size

60KB
MD5

3d5b7560996ca95c5c7af18b65ca87fc
SHA1

485950a9e129c8f3e6c792d2e90455d6aa260924
SHA256

af9c0cb3f8fcd7d896d781abb817ba06589a9908edc716d0fe551a81c530ef64
SHA512

07b32ded037c725edd122eb0434599204344436565bc97dee8a3af9c8c6e92db78db763c11fd818272d4fdb8af7a397c3073748ab64eff4f74c7fdad0b4c1343
SSDEEP

768:LxrfH6tZMPis1KD7fouea65H8cseAswy2jOIG/PkPFFY/tVLHWY5MRz9i0QF:L1fH6tBA5Hz8yXnSFFYPLHZWriJF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d5b7560996ca95c5c7af18b65ca87fc_JaffaCakes118

Files

3d5b7560996ca95c5c7af18b65ca87fc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

56dca27dc5de58c81da41dbebecc9714

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\mkvgWArj\tCqGAhky\wmynv\gbbVj\jiajalp.pdb

Imports

kernel32

FlushFileBuffers
SetSystemTime
GetFileAttributesExA
CreateFileW
EnumResourceLanguagesA
InterlockedExchangeAdd
TransactNamedPipe
GlobalMemoryStatus
EscapeCommFunction
SetCommTimeouts
SetFileApisToOEM
GetStartupInfoW
GetAtomNameA
HeapDestroy

shlwapi

StrSpnW
PathGetArgsW

user32

SetWindowLongW
GetMessageExtraInfo
HiliteMenuItem
CreateCursor
AdjustWindowRect
wsprintfW
GetDlgItem
TranslateMessage
GetActiveWindow
GetScrollPos
ClientToScreen
GetKeyState

gdi32

DeleteDC
StartDocW
ExcludeClipRect
CreatePolygonRgn
CreatePenIndirect
EnumFontFamiliesExW
GetWindowOrgEx
CreateBitmapIndirect

Exports

Exports

?xCRmvjIfQYhfseTQlh@@YGEMPAI@Z
?EcNsptuuyN@@YGPAHDH@Z
?ssigVzuvaMAeqy@@YGXHF@Z
?iiBDbeKfYKHzxYQPzwj@@YGPAMDPAF@Z
?MSsOpnlywogqd@@YGPAJPAEJ@Z
?nrIGwrSqkHlpvb@@YGEDI@Z
?jqWnvXmOalz@@YGPAXPAD@Z

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56dca27dc5de58c81da41dbebecc9714

Headers

File Characteristics

PDB Paths

Imports

kernel32

shlwapi

user32

gdi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.itext Size: 512B - Virtual size: 160B

.import Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 186KB

.rdata Size: 3KB - Virtual size: 3KB

.rsrc Size: 35KB - Virtual size: 35KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.itext
Size: 512B - Virtual size: 160B

.import
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 186KB

.rdata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 35KB - Virtual size: 35KB

.reloc
Size: 2KB - Virtual size: 1KB