3745c6e7cf4ac842190339da1c184739_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3745c6e7cf4ac842190339da1c184739_JaffaCakes118
Size

363KB
MD5

3745c6e7cf4ac842190339da1c184739
SHA1

a2be3089be7f42fc1cd5b3b6f59d662d5f7fdf8b
SHA256

8e66f8fcd13bbd5710241cc69bad1d59ac0948e47a433d7069d6c5140053a656
SHA512

9135bd308dee36a658d10a6ccb70f2edb38ea8d80be95dbfff7f64681005712328818ac998f659b5a0353a1d205ffcbbf42059e6bc0abb9429bc1ce1fb5df715
SSDEEP

6144:3dTDN4doM1aNsDKSnUADo+uT4GhDb1daKXhUpC/O52k4WR3FYgHD9ZeA8soL226Y:3dPN4WMwnSn2zjl/Be2vFAHoL2C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3745c6e7cf4ac842190339da1c184739_JaffaCakes118

Files

3745c6e7cf4ac842190339da1c184739_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d938debaad7dd60f97cbb14ee9fe58e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetTopWindow
AdjustWindowRect
ShowWindowAsync
GetSysColor
GetNextDlgTabItem
GetWindowTextLengthA
GetParent
IsWindowUnicode
WindowFromPoint
ChildWindowFromPointEx

ole32

CoLockObjectExternal
CoGetCurrentProcess
PropStgNameToFmtId
SetConvertStg
CoIsHandlerConnected
OleFlushClipboard
OleCreateLinkFromDataEx
CoTaskMemFree
ReadClassStm
CoDosDateTimeToFileTime
CoFreeUnusedLibraries
StgOpenPropStg
GetRunningObjectTable
PropVariantCopy
OleQueryLinkFromData
CreateBindCtx

oledlg

ord8
ord5
ord3
ord7
ord11
ord9
ord1
ord10
ord4
ord6
ord12
ord2

oleaut32

LHashValOfNameSysA

comctl32

ord6
CreateToolbarEx
ord8
ord3
DrawStatusTextW
PropertySheetA

shlwapi

StrRChrW
StrToIntA
StrChrIW
StrStrA
StrRStrIW

kernel32

CreateEventA
GetUserDefaultLangID
VirtualProtect
VirtualFree
LocalSize
MultiByteToWideChar
IsBadReadPtr
GlobalAlloc
HeapFree
LocalFlags
SetLocaleInfoA
GetProcAddress
VirtualAlloc
GetStartupInfoA
GetModuleHandleA
SetThreadLocale

msvcrt

_acmdln
exit
_XcptFilter
_exit
_heapchk
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d938debaad7dd60f97cbb14ee9fe58e

Headers

File Characteristics

Imports

user32

ole32

oledlg

oleaut32

comctl32

shlwapi

kernel32

msvcrt

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 131KB - Virtual size: 130KB

.data Size: 272KB - Virtual size: 350KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 131KB - Virtual size: 130KB

.data
Size: 272KB - Virtual size: 350KB

.rsrc
Size: 6KB - Virtual size: 5KB