372096e65e7961a3364d7a5c8ccb5441_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

372096e65e7961a3364d7a5c8ccb5441_JaffaCakes118
Size

101KB
MD5

372096e65e7961a3364d7a5c8ccb5441
SHA1

f956a053ffc0c45ddb7da85a1b70bf71a12f1d7b
SHA256

f7c0ec5913b9fe829445495d1ca0c824c04c6f2cc0a6c854e032b5f53401f44c
SHA512

bdeb414df88555da7c00e81e3b2d722818336a5e38b625f3329ce0804cbc47a155a33314cc2de684e366b206e9e51d33f16c8f3f20dffa6b06f50eee862ec34d
SSDEEP

1536:Cfz2979lETg6eJv83PcdICv+gvo7NX1XnRY:g2rmXD3PvgvMX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
372096e65e7961a3364d7a5c8ccb5441_JaffaCakes118

Files

372096e65e7961a3364d7a5c8ccb5441_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c47277ae83da88b7415cc3332ed66681

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
GetFileTitleA

shell32

SHGetFileInfoA
DragQueryFileA
SHGetFolderPathA

shlwapi

PathGetCharTypeA
SHEnumValueA
PathIsContentTypeA
SHGetValueA

gdi32

SelectObject
CreateFontIndirectA
GetBitmapBits
BitBlt
SaveDC

ole32

CreateStreamOnHGlobal
CreateOleAdviseHolder
StgCreateDocfileOnILockBytes

comctl32

ImageList_Add
ImageList_Read
ImageList_DragShowNolock

kernel32

GetLastError
GetProcessHeap
VirtualAlloc
LoadLibraryA
GetACP
GetModuleHandleA

msvcrt

strncmp
memmove
memcpy
log10

user32

CharNextA
IsChild
GetMenuItemID
GetMenuItemInfoA
GetSysColorBrush
SetWindowTextA
DrawIconEx
DefWindowProcA
GetDesktopWindow
GetMenuItemCount
DefMDIChildProcA
CharLowerBuffA
GetWindowTextA
GetScrollInfo
DrawMenuBar
SetWindowLongA
DrawTextA
FindWindowA
GetDlgItem
GetDCEx
GetDC
CreatePopupMenu
SystemParametersInfoA
GetClipboardData
RegisterClassA
FrameRect
GetMenu
CreateIcon
CallNextHookEx
GetLastActivePopup
EqualRect
CharToOemA
ShowScrollBar
DispatchMessageW
EndDeferWindowPos
GetKeyState
GetCursorPos
CallWindowProcA
GetKeyNameTextA
GetMessagePos
GetMenuState
IsWindowVisible
SetCursor
GetCapture
GetWindow
GetIconInfo
GetSysColor
GetMenuStringA
GetScrollPos
GetForegroundWindow
SetWindowPos
GetScrollRange
SetTimer
IsWindowEnabled
GetParent
EnableMenuItem
HideCaret
DrawFrameControl
CreateWindowExA
BeginDeferWindowPos
EnumThreadWindows

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c47277ae83da88b7415cc3332ed66681

Headers

File Characteristics

Imports

comdlg32

shell32

shlwapi

gdi32

ole32

comctl32

kernel32

msvcrt

user32

Sections

.text Size: 47KB - Virtual size: 47KB

.idata Size: 3KB - Virtual size: 2KB

.edata Size: 49KB - Virtual size: 48KB

.data Size: 1024B - Virtual size: 776B

.text
Size: 47KB - Virtual size: 47KB

.idata
Size: 3KB - Virtual size: 2KB

.edata
Size: 49KB - Virtual size: 48KB

.data
Size: 1024B - Virtual size: 776B