4041cfe80782a6b141ee45e2ed62ad37_JaffaCakes118

General

Target

4041cfe80782a6b141ee45e2ed62ad37_JaffaCakes118
Size

495KB
MD5

4041cfe80782a6b141ee45e2ed62ad37
SHA1

f030224754e1f62fb42070989814722eb8e0c84d
SHA256

8b1474685e2e95dc40fbe01f716dccb316a977afe6821f3efc4ec204f59549b4
SHA512

6a0db093255b73faff99668b3ee5817ed47b28bcac8662312eb6238117c6eaef0288a6077a1a3fbe5d374236f46b8a38bb9e4a59718e726f86ae21890f93a0c0
SSDEEP

3072:D0KPIJaJ3Zt/WO+U970bC8MPnlGsBLsTwHeWf2RaR4QYUQ9JJK4cqxfXc:4CIJaRj+4LsZ+2RaRXaJJK4U

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4041cfe80782a6b141ee45e2ed62ad37_JaffaCakes118

Files

4041cfe80782a6b141ee45e2ed62ad37_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e6723f5b825a7b35f9412dd88b4133bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetWindow
GetDesktopWindow
SetWindowLongW
GetDC
SetWindowPlacement
SetTimer
GetMenu

oleaut32

SafeArrayGetElement
GetErrorInfo
VariantChangeType
SysAllocStringLen
SysFreeString
SafeArrayUnaccessData
SafeArrayPtrOfIndex
OleLoadPicture

kernel32

GetCurrentProcessId
GetCommandLineA
VirtualAllocEx
LoadLibraryA
ExitProcess
GetACP

shell32

SHGetSpecialFolderLocation
SHFileOperationA
SHGetFolderPathA
Shell_NotifyIconA

Exports

Exports

L2Sts_9N8
7dV45
_XJYqzm3@24
ll6br
_9EU82RKpUm@24
eD0drV
KZFm4cv
_G0ZBdmS
w78P37rrjJaV9N
_pP4gwn51hdAJSo
FMnLQ2t9
_PvlKoNA_q

Sections

CODE
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdata
Size: 454KB - Virtual size: 454KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 821B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tidata
Size: 512B - Virtual size: 453B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6723f5b825a7b35f9412dd88b4133bf

Headers

File Characteristics

Imports

user32

oleaut32

kernel32

shell32

Exports

Exports

Sections

CODE Size: 11KB - Virtual size: 11KB

.data Size: 10KB - Virtual size: 10KB

.itdata Size: 454KB - Virtual size: 454KB

.idata Size: 1024B - Virtual size: 821B

.tidata Size: 512B - Virtual size: 453B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

CODE
Size: 11KB - Virtual size: 11KB

.data
Size: 10KB - Virtual size: 10KB

.itdata
Size: 454KB - Virtual size: 454KB

.idata
Size: 1024B - Virtual size: 821B

.tidata
Size: 512B - Virtual size: 453B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB