705088c82138e1432b0dba96a2fbf1d1_JaffaCakes118

General

Target

705088c82138e1432b0dba96a2fbf1d1_JaffaCakes118
Size

31KB
MD5

705088c82138e1432b0dba96a2fbf1d1
SHA1

9ce9bc8eee26f11269aac74c39b980c5e3b58317
SHA256

77d2fe546133b3f277918a0224bb52c5aba5ba4ad3462d9e58f904b14ebdf6b0
SHA512

2a5dab2ffd3c5444138c5a8759a96e61517700f428894573ec58134b3c889415b6a1c58e8e0235cfff1ca61ea207fba469c68cda7dce152503e176b99f4595f9
SSDEEP

384:1ATPpKhurrsPXhqmS3hwrGZejnRyl7rVx9E1xWf2598vKSkhUPF+F2cpDm:1QRAR63hwrGYjRiaMfC9KFF+Fdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
705088c82138e1432b0dba96a2fbf1d1_JaffaCakes118

Files

705088c82138e1432b0dba96a2fbf1d1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e5ff9b4e5179583436f842c00337c04c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleLoadFromStream
CoMarshalInterface
OleCreateEx
OleCreateFromData
CoTaskMemFree
OleTranslateAccelerator
CoMarshalHresult
OleNoteObjectVisible
CoGetTreatAsClass
CoFreeAllLibraries
OleCreateLinkFromDataEx
OleLockRunning
CoCreateFreeThreadedMarshaler

gdi32

MoveToEx
SelectObject
CreateRectRgn
SaveDC
Polyline
SetROP2
SetMapMode
RestoreDC
DeleteObject
SetBkColor
GetBkColor
BitBlt
CreateRectRgnIndirect

ulib

??0PATH@@QAE@XZ
?SetIdsr@COMM_DEVICE@@QAEEE@Z
??0OBJECT@@IAE@XZ
??1ARRAY@@UAE@XZ
??OWSTRING@@QBEEABV0@@Z
??1STREAM_MESSAGE@@UAE@XZ
?SetOdsr@COMM_DEVICE@@QAEEE@Z
?IsInAutoChk@MESSAGE@@UAEEXZ
?IsCorrectVersion@SYSTEM@@SGEXZ
?QueryString@WSTRING@@QBEPAV1@KK@Z
?Initialize@TIMEINFO@@QAEXPBV1@@Z
?Initialize@ARRAY@@QAEEKK@Z
?Construct@WSTRING@@IAEXXZ
?Cast@SCREEN@@SGPAV1@PBVOBJECT@@@Z
?LogMsg@MESSAGE@@QAAEKPBDZZ
?Resize@FSTRING@@UAEEK@Z
?QueryChCount@WSTRING@@QBEKXZ
?IsSameClass@OBJECT@@QBEEPBV1@@Z

user32

SetForegroundWindow
ReleaseDC
DrawIconEx
GetMenu
IsDlgButtonChecked
GetPropW
CreateDialogParamW
InvalidateRect
GetDesktopWindow

msvcrt

_strlwr
_access
_itow
realloc
strtol
fgets
__getmainargs
_wcsnicmp

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e5ff9b4e5179583436f842c00337c04c

Headers

File Characteristics

Imports

ole32

gdi32

ulib

user32

msvcrt

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 62KB

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 62KB