3de724d3e7a4af4c7e20d16302d8241c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3de724d3e7a4af4c7e20d16302d8241c_JaffaCakes118
Size

63KB
MD5

3de724d3e7a4af4c7e20d16302d8241c
SHA1

bdc566c1b09ab11edaf5fe9b8d5c5c91ef8cd027
SHA256

decb01d3660fc3516e4bbf5787e7355dd5921776e4c0a3eed74280fec46111f2
SHA512

ec3bc92ea80ce8a884b127360f8bf6bb9c9a0c7f8d534135becdadee8c0edc54f589db30a6d578e2d74f18606075e126068d265b6eadfbd9ac8743f97107202e
SSDEEP

768:UtMJ2xh7OCKq5Ka4z+C2kp9L/rIAKbHVaJOzuqrdqzd92TzGSL6vM1hMqrG5mihT:av7nX5Ka4zS8lzI16so92T/sB5mih

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3de724d3e7a4af4c7e20d16302d8241c_JaffaCakes118

Files

3de724d3e7a4af4c7e20d16302d8241c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

76c69d4e83b3f6e0a2159bc2ad708a0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strlen
_ftol
??1type_info@@UAE@XZ
__p__osver
ceil
swscanf
_access
_strlwr
qsort
_ltow
_wcslwr
wcstok
_wcsupr
free
__getmainargs
_itoa
??0exception@@QAE@ABV0@@Z
_beginthreadex
_tell
_commit
_chsize
wcstoul
srand
_CIacos
__initenv
printf
_write
wcscpy
mbstowcs
_CxxThrowException
??3@YAXPAX@Z
fopen
__set_app_type

ole32

OleInitialize
GetRunningObjectTable
CreateStreamOnHGlobal
StringFromIID
OleRegGetMiscStatus
MkParseDisplayName
CreateBindCtx
GetHGlobalFromStream
CoGetInterfaceAndReleaseStream
StgCreateDocfileOnILockBytes
CoUnmarshalInterface
OleUninitialize
StgCreateDocfile
GetClassFile
CoTaskMemFree
CoCreateInstance
OleSaveToStream
CoGetMalloc
CoImpersonateClient
StringFromGUID2
StringFromCLSID
CoDisconnectObject
IIDFromString

kernel32

InterlockedIncrement
GetLocalTime
LocalAlloc
WideCharToMultiByte
GetCurrentProcessId
SetUnhandledExceptionFilter
InitializeCriticalSection
MulDiv
EnterCriticalSection
IsValidCodePage
GetCommandLineA
LoadLibraryA
VirtualAlloc
InterlockedDecrement
GetCurrentThreadId
GetCurrentProcess
ExitProcess
lstrcmpiW
GetFileSize
GetOEMCP
FlushFileBuffers
SetFilePointer
GetVersionExA
LeaveCriticalSection
FindClose
FindNextFileA

user32

GetMenuItemCount
GetSysColorBrush
wsprintfW
SystemParametersInfoW
RegisterClipboardFormatW
GetForegroundWindow
CheckRadioButton
SetMenu
GetMenu
SetRect
DragObject
IsZoomed
DefWindowProcW
GetWindowRect
BeginPaint
GetPropA
InvalidateRect
SendDlgItemMessageW
GetWindowLongA
GetMessageA
GetCursorPos
GetActiveWindow
EnableWindow
DrawFocusRect
GetWindowLongW
FindWindowA
CreateWindowExW
SetForegroundWindow
IsIconic
PtInRect
SetFocus
FindWindowW
GetDC

version

GetFileVersionInfoSizeA
GetFileVersionInfoSizeW

comdlg32

PrintDlgA
ChooseColorW
PageSetupDlgA
GetOpenFileNameW
GetFileTitleA
FindTextA
ChooseFontA
GetFileTitleW
FindTextW
ChooseColorA
ChooseFontW
CommDlgExtendedError
PrintDlgW
PrintDlgExW
GetOpenFileNameA

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

76c69d4e83b3f6e0a2159bc2ad708a0e

Headers

File Characteristics

Imports

msvcrt

ole32

kernel32

user32

version

comdlg32

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 33KB - Virtual size: 32KB

.idata Size: 20KB - Virtual size: 81KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 33KB - Virtual size: 32KB

.idata
Size: 20KB - Virtual size: 81KB