02979e4b044a77e0e234ef89f39aa04d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

02979e4b044a77e0e234ef89f39aa04d_JaffaCakes118
Size

63KB
MD5

02979e4b044a77e0e234ef89f39aa04d
SHA1

32cf99e785abd6b7cacc55e32b99b52c6c2534e8
SHA256

e3a32253c140a229bf21fb5c2d6dd55cf8f622bf7a0ad40b949c3f3f6a8462b8
SHA512

083d4afce68f675a13e19eee4652635930310aa41e853887b5faee8dffaaa469320e5643e3ffda36e9404ea890b4dd5e156d949bc15dc1cfbed6b0e499fdcb40
SSDEEP

768:UtMJ2Fh7OCKq5Ka4z+C2kp9L/rIAKbHVaJOzuqrdqzd92TzGSL6vM1hMqrG5mihT:aj7nX5Ka4zS8lzI16so92T/sB5mih

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
02979e4b044a77e0e234ef89f39aa04d_JaffaCakes118

Files

02979e4b044a77e0e234ef89f39aa04d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

76c69d4e83b3f6e0a2159bc2ad708a0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strlen
_ftol
??1type_info@@UAE@XZ
__p__osver
ceil
swscanf
_access
_strlwr
qsort
_ltow
_wcslwr
wcstok
_wcsupr
free
__getmainargs
_itoa
??0exception@@QAE@ABV0@@Z
_beginthreadex
_tell
_commit
_chsize
wcstoul
srand
_CIacos
__initenv
printf
_write
wcscpy
mbstowcs
_CxxThrowException
??3@YAXPAX@Z
fopen
__set_app_type

ole32

OleInitialize
GetRunningObjectTable
CreateStreamOnHGlobal
StringFromIID
OleRegGetMiscStatus
MkParseDisplayName
CreateBindCtx
GetHGlobalFromStream
CoGetInterfaceAndReleaseStream
StgCreateDocfileOnILockBytes
CoUnmarshalInterface
OleUninitialize
StgCreateDocfile
GetClassFile
CoTaskMemFree
CoCreateInstance
OleSaveToStream
CoGetMalloc
CoImpersonateClient
StringFromGUID2
StringFromCLSID
CoDisconnectObject
IIDFromString

kernel32

InterlockedIncrement
GetLocalTime
LocalAlloc
WideCharToMultiByte
GetCurrentProcessId
SetUnhandledExceptionFilter
InitializeCriticalSection
MulDiv
EnterCriticalSection
IsValidCodePage
GetCommandLineA
LoadLibraryA
VirtualAlloc
InterlockedDecrement
GetCurrentThreadId
GetCurrentProcess
ExitProcess
lstrcmpiW
GetFileSize
GetOEMCP
FlushFileBuffers
SetFilePointer
GetVersionExA
LeaveCriticalSection
FindClose
FindNextFileA

user32

GetMenuItemCount
GetSysColorBrush
wsprintfW
SystemParametersInfoW
RegisterClipboardFormatW
GetForegroundWindow
CheckRadioButton
SetMenu
GetMenu
SetRect
DragObject
IsZoomed
DefWindowProcW
GetWindowRect
BeginPaint
GetPropA
InvalidateRect
SendDlgItemMessageW
GetWindowLongA
GetMessageA
GetCursorPos
GetActiveWindow
EnableWindow
DrawFocusRect
GetWindowLongW
FindWindowA
CreateWindowExW
SetForegroundWindow
IsIconic
PtInRect
SetFocus
FindWindowW
GetDC

version

GetFileVersionInfoSizeA
GetFileVersionInfoSizeW

comdlg32

PrintDlgA
ChooseColorW
PageSetupDlgA
GetOpenFileNameW
GetFileTitleA
FindTextA
ChooseFontA
GetFileTitleW
FindTextW
ChooseColorA
ChooseFontW
CommDlgExtendedError
PrintDlgW
PrintDlgExW
GetOpenFileNameA

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

76c69d4e83b3f6e0a2159bc2ad708a0e

Headers

File Characteristics

Imports

msvcrt

ole32

kernel32

user32

version

comdlg32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 33KB - Virtual size: 32KB

.idata Size: 20KB - Virtual size: 81KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 33KB - Virtual size: 32KB

.idata
Size: 20KB - Virtual size: 81KB