37f4bd18ed5ab221a262c6efd092aadc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37f4bd18ed5ab221a262c6efd092aadc_JaffaCakes118
Size

402KB
MD5

37f4bd18ed5ab221a262c6efd092aadc
SHA1

55f1159dd29314796cbdc727a9188eb5e1cb8950
SHA256

01a049a9931b316c4739cd3215eb9c70db0760ac2d1a25e9a2335bdb67a38b73
SHA512

8403bddccc83fd142fba8742ad6b33eee6f45feccb876de61e3c5f03f677ecb230d729a3ec6b6338feb0f72c4bfd61605f97daeda373ca52b2ac98c2990de5fc
SSDEEP

12288:8Pq3fjQFz160HXVjLWg5FsKUUBnasFGa5eP4V:8i3f8N160HXBig5aUBJx/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37f4bd18ed5ab221a262c6efd092aadc_JaffaCakes118

Files

37f4bd18ed5ab221a262c6efd092aadc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

166535a914f42a263f959121c44c1da8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

ole32

CoRegisterClassObject
CoReleaseMarshalData
OleRegGetUserType
MkParseDisplayName
CoUninitialize
StgOpenStorage
CreateStreamOnHGlobal
OleCreateStaticFromData
CoFreeUnusedLibraries
CreateOleAdviseHolder

user32

FrameRect
CallNextHookEx
GetClassInfoA
ClientToScreen
DrawFrameControl
EndPaint
DrawTextA
CharUpperBuffA
DefWindowProcA
GetForegroundWindow
EnumWindows
DefMDIChildProcA
DrawEdge
EnumThreadWindows
CreatePopupMenu
EnableWindow
GetCursor
CharLowerBuffA
CallWindowProcA
GetDlgItem
DestroyIcon
GetCapture
EqualRect
BeginPaint
EnableMenuItem
DrawIconEx
CharNextW
GetDC
DefFrameProcA
DrawIcon
DestroyWindow
FillRect
DispatchMessageA
DestroyMenu
DestroyCursor
EnableScrollBar
DrawMenuBar

version

GetFileVersionInfoA
VerFindFileA
VerInstallFileA

kernel32

SetEvent
GlobalFindAtomA
GetCommandLineW
VirtualAllocEx
lstrlenA
GetCommandLineA
IsBadReadPtr
LoadLibraryExA
GetProcAddress
HeapFree
LoadResource
GetStartupInfoA
GetLastError
SetHandleCount
GetModuleFileNameA
VirtualAlloc
WideCharToMultiByte
GetFullPathNameA
SetErrorMode
GetUserDefaultLCID
GetVersionExA
ExitThread
IsBadHugeReadPtr
GetLocalTime
GlobalAddAtomA
GetLocaleInfoA
ResetEvent
ExitProcess
GetModuleHandleA
SetThreadLocale
LoadLibraryA

shlwapi

SHDeleteValueA
SHGetValueA
PathGetCharTypeA
SHSetValueA
SHDeleteKeyA
PathIsContentTypeA

oleaut32

VariantChangeType
SysReAllocStringLen
OleLoadPicture
GetErrorInfo
SafeArrayCreate
SafeArrayPtrOfIndex
SafeArrayGetElement
SysAllocStringLen
SysStringLen
SafeArrayUnaccessData

comdlg32

GetOpenFileNameA

gdi32

GetObjectA
SetTextColor
GetPixel
SetPixel
GetDIBColorTable
SetBkMode
BitBlt

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 325KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES64
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES41
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES08
Size: 512B - Virtual size: 43B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES42
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES61
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES32
Size: 512B - Virtual size: 311B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES01
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES89
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

166535a914f42a263f959121c44c1da8

Headers

File Characteristics

Imports

ole32

user32

version

kernel32

shlwapi

oleaut32

comdlg32

gdi32

Sections

.text Size: 62KB - Virtual size: 61KB

DATA Size: 325KB - Virtual size: 325KB

RES64 Size: 5KB - Virtual size: 4KB

RES41 Size: 512B - Virtual size: 208B

RES08 Size: 512B - Virtual size: 43B

RES42 Size: 1KB - Virtual size: 1KB

RES61 Size: 512B - Virtual size: 508B

RES32 Size: 512B - Virtual size: 311B

RES01 Size: 1KB - Virtual size: 1KB

RES89 Size: 1KB - Virtual size: 1KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 62KB - Virtual size: 61KB

DATA
Size: 325KB - Virtual size: 325KB

RES64
Size: 5KB - Virtual size: 4KB

RES41
Size: 512B - Virtual size: 208B

RES08
Size: 512B - Virtual size: 43B

RES42
Size: 1KB - Virtual size: 1KB

RES61
Size: 512B - Virtual size: 508B

RES32
Size: 512B - Virtual size: 311B

RES01
Size: 1KB - Virtual size: 1KB

RES89
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB