837c5e4f09e071f38e9f42cb8eb65658_JaffaCakes118

General

Target

837c5e4f09e071f38e9f42cb8eb65658_JaffaCakes118
Size

420KB
MD5

837c5e4f09e071f38e9f42cb8eb65658
SHA1

a47ca8a98a43c7e6254c0490192e7d8f0c32253e
SHA256

57b823ca87a51477b1924142d42d0c3ca15c7eb5f30e3bd716cc102951050f76
SHA512

664b2dcd786a4c5d63311436944e92afcd3ea464722bd69bdec7a9218687bc3ac0a3f16effa74ddee4d2bceaf5191f04dfd7c8e1ae1e04458920060c46d3eacd
SSDEEP

12288:jtI8mmXjV6f2zbyMFJguuvWB06v21QZEN0Fs/Ikx7eqCtF:oIV6gbyMvhuvB6v2vN0E7eFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
837c5e4f09e071f38e9f42cb8eb65658_JaffaCakes118

Files

837c5e4f09e071f38e9f42cb8eb65658_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e781c737184aa7c8e3c9cb38eea6bdd5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
AdjustWindowRect
CloseWindow
IsDialogMessageA
GetParent
SendDlgItemMessageA
SetParent
GetNextDlgGroupItem
ShowWindowAsync
GetWindow
GetDesktopWindow
ShowWindow
IsWindowUnicode

ole32

MkParseDisplayName

oledlg

ord9
ord1
ord8
ord6
ord12
ord3
ord2
ord5
ord10
ord7
ord4
ord11

oleaut32

LHashValOfNameSysA

comctl32

ord16
PropertySheetA
ord2
ord4
ord13
ord14
PropertySheetW
ord8
InitializeFlatSB
CreateStatusWindowW
CreatePropertySheetPageA

shlwapi

StrCSpnW
StrChrIW
StrCSpnA

kernel32

GetNumberFormatA
GetACP
HeapUnlock
GlobalReAlloc
LCMapStringA
HeapReAlloc
MultiByteToWideChar
HeapCreate
GetStartupInfoA
GetDateFormatA
WideCharToMultiByte
GlobalFree
ReleaseSemaphore
LocalLock
EnterCriticalSection
GetProcAddress
VirtualAlloc
GetModuleHandleA
IsBadWritePtr

msvcrt

__getmainargs
_exit
asin
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
exit
_acmdln
_XcptFilter
_initterm
_adjust_fdiv
__setusermatherr

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 271KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e781c737184aa7c8e3c9cb38eea6bdd5

Headers

File Characteristics

Imports

user32

ole32

oledlg

oleaut32

comctl32

shlwapi

kernel32

msvcrt

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 130KB - Virtual size: 130KB

.data Size: 271KB - Virtual size: 349KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 130KB - Virtual size: 130KB

.data
Size: 271KB - Virtual size: 349KB

.rsrc
Size: 6KB - Virtual size: 5KB