375578bf92af872e129caa9677b565a9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

375578bf92af872e129caa9677b565a9_JaffaCakes118
Size

417KB
MD5

375578bf92af872e129caa9677b565a9
SHA1

d614e05601ea8142aa017775be32a2f4f39eea8e
SHA256

0fcb44013879c71ef86f299adf3fa38226eec13392e617b37a423a1937b9c43e
SHA512

fd0dc9f012a4e606d01545e299960146679ddd1f7ed6a489f0253913480a447278d14ae4faa3c30794cddb0b5bdc23566732d40c89297f5bac48852827b09c7d
SSDEEP

12288:3dPN4WMwnSn2zjl/Be2vFAHoL2zKSmJvHX:3FeWNQ2zR39GAuSv3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
375578bf92af872e129caa9677b565a9_JaffaCakes118

Files

375578bf92af872e129caa9677b565a9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d938debaad7dd60f97cbb14ee9fe58e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetTopWindow
AdjustWindowRect
ShowWindowAsync
GetSysColor
GetNextDlgTabItem
GetWindowTextLengthA
GetParent
IsWindowUnicode
WindowFromPoint
ChildWindowFromPointEx

ole32

CoLockObjectExternal
CoGetCurrentProcess
PropStgNameToFmtId
SetConvertStg
CoIsHandlerConnected
OleFlushClipboard
OleCreateLinkFromDataEx
CoTaskMemFree
ReadClassStm
CoDosDateTimeToFileTime
CoFreeUnusedLibraries
StgOpenPropStg
GetRunningObjectTable
PropVariantCopy
OleQueryLinkFromData
CreateBindCtx

oledlg

ord8
ord5
ord3
ord7
ord11
ord9
ord1
ord10
ord4
ord6
ord12
ord2

oleaut32

LHashValOfNameSysA

comctl32

ord6
CreateToolbarEx
ord8
ord3
DrawStatusTextW
PropertySheetA

shlwapi

StrRChrW
StrToIntA
StrChrIW
StrStrA
StrRStrIW

kernel32

CreateEventA
GetUserDefaultLangID
VirtualProtect
VirtualFree
LocalSize
MultiByteToWideChar
IsBadReadPtr
GlobalAlloc
HeapFree
LocalFlags
SetLocaleInfoA
GetProcAddress
VirtualAlloc
GetStartupInfoA
GetModuleHandleA
SetThreadLocale

msvcrt

_acmdln
exit
_XcptFilter
_exit
_heapchk
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d938debaad7dd60f97cbb14ee9fe58e

Headers

File Characteristics

Imports

user32

ole32

oledlg

oleaut32

comctl32

shlwapi

kernel32

msvcrt

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 131KB - Virtual size: 130KB

.data Size: 272KB - Virtual size: 350KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 131KB - Virtual size: 130KB

.data
Size: 272KB - Virtual size: 350KB

.rsrc
Size: 6KB - Virtual size: 5KB