ade172299ca7ee1a67f4eeb3e4eca3da_JaffaCakes118

General

Target

ade172299ca7ee1a67f4eeb3e4eca3da_JaffaCakes118
Size

418KB
MD5

ade172299ca7ee1a67f4eeb3e4eca3da
SHA1

52868e7528fe0b96811acfb71b4dc509ef46c8c4
SHA256

9719929853c2f4d511a1eb5c370ff7d2a3caa27cb60ed79b0453dbf192ca61df
SHA512

5f3f6bfa431796226db01b708733de3b07001498ddf88b87f160cac171760f9b6451f33430d3e00a4443e95e34b2cafaf765142940b55b94ba1979ced2529ca5
SSDEEP

12288:AaXwdcNso8mgk0PshXGR5m3akKyqkbhnPIIDAwyf9fkobv:nABoZgk0ENgsxhlDsVco

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ade172299ca7ee1a67f4eeb3e4eca3da_JaffaCakes118

Files

ade172299ca7ee1a67f4eeb3e4eca3da_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f8c8f43c3af5023126434f6e7b58788

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
GetWindowTextLengthA
SetForegroundWindow
GetDlgItemTextA
GetLastActivePopup
EnumWindows
ShowWindow
GetTopWindow
TileWindows
SetSysColors
BringWindowToTop
SendDlgItemMessageA

ole32

ProgIDFromCLSID
OleGetAutoConvert
OleCreateMenuDescriptor
OleRun
StringFromIID
CoLoadLibrary
WriteClassStm
CreateFileMoniker
CoMarshalInterface
CoReleaseMarshalData
OleGetClipboard
ReleaseStgMedium
ReadClassStg

oledlg

ord8
ord6
ord3
ord10
ord2
ord11
ord5
ord7
ord4
ord12
ord1
ord9

oleaut32

LHashValOfNameSysA

kernel32

GetStartupInfoA
LocalUnlock
PulseEvent
WaitForMultipleObjects
InitializeCriticalSection
MultiByteToWideChar
HeapUnlock
GlobalFlags
HeapLock
LocalHandle
LocalLock
SetEvent
GetProcAddress
GetModuleHandleA
GetLocalTime
VirtualAlloc
LocalReAlloc

msvcrt

_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_controlfp
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_initterm

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 288KB - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f8c8f43c3af5023126434f6e7b58788

Headers

File Characteristics

Imports

user32

ole32

oledlg

oleaut32

kernel32

msvcrt

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 113KB - Virtual size: 112KB

.data Size: 288KB - Virtual size: 366KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 113KB - Virtual size: 112KB

.data
Size: 288KB - Virtual size: 366KB

.rsrc
Size: 6KB - Virtual size: 5KB