783ab6797172685f5d19f58e399d606e_JaffaCakes118

General

Target

783ab6797172685f5d19f58e399d606e_JaffaCakes118
Size

216KB
MD5

783ab6797172685f5d19f58e399d606e
SHA1

e434d000705da27f40c734a16facb7757c459889
SHA256

2adff16e5cd2142517cd2cd54de88c8e89c6dfabb641d4ea8f708f1a492d7577
SHA512

041d09b2bed25cc3a42848e25cff0f6d8879cc5a6e653b1406cd9e2565f468674b7934169bca955b7ee0ed649c6ce980b5f44b1736a144bb25c0a4e1779c8ac7
SSDEEP

6144:HiRwqs8QK7PN1jIHpxZj9lmmqQ0gsXjK+6YGxjD:CRwqs81PvIjRXfz0gsWLx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
783ab6797172685f5d19f58e399d606e_JaffaCakes118

Files

783ab6797172685f5d19f58e399d606e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c3be60de68e774169797402e79f0a575

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDeferWindowPos
DefDlgProcA
SetSysColors
MessageBoxIndirectA
ArrangeIconicWindows
SetWindowPos
ShowOwnedPopups
CascadeWindows
EnumChildWindows
MoveWindow
SetForegroundWindow
GetWindowThreadProcessId
SetWindowTextA
GetWindow

ole32

CoTaskMemAlloc
CoInitialize
CoUninitialize
CoDisconnectObject
CreatePointerMoniker
StgCreatePropSetStg
CoFreeLibrary
OleCreateLinkToFile
StgIsStorageILockBytes
StgCreateStorageEx
StringFromCLSID
OleNoteObjectVisible

oleaut32

OleLoadPicturePath

kernel32

WaitForSingleObject
GetModuleHandleA
ReleaseSemaphore
VirtualAlloc
OpenSemaphoreA
CreateSemaphoreA
GetProcAddress
GetACP
HeapSize
HeapReAlloc
VirtualFreeEx
CompareStringA
HeapAlloc
LCMapStringA
VirtualQuery
GetStartupInfoA
ResetEvent
VirtualAllocEx
InitializeCriticalSection

msvcrt

__getmainargs
exit
_controlfp
_except_handler3
__set_app_type
_XcptFilter
_exit
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_acmdln

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 185KB - Virtual size: 532KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c3be60de68e774169797402e79f0a575

Headers

File Characteristics

Imports

user32

ole32

oleaut32

kernel32

msvcrt

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 185KB - Virtual size: 532KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 185KB - Virtual size: 532KB

.rsrc
Size: 17KB - Virtual size: 17KB