e8c99afbb48b4ea2d62b065b70d8a73b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e8c99afbb48b4ea2d62b065b70d8a73b_JaffaCakes118
Size

76KB
MD5

e8c99afbb48b4ea2d62b065b70d8a73b
SHA1

68ac902cb1e889be5438b10155e55dda452f7e4a
SHA256

3fe52b044c3aadec2808eb122882c290c353cefea34c740b510aabe533aba9a5
SHA512

cfb9c4d0cf1d1941bb7e2e84ca437523fbd42947dbf8e4eb79ee5c5fb901c4915f065520d4928699ddd4f71c3208a903d519eae412a38dd20c7357360f0c52d6
SSDEEP

1536:kynSp79DnVux+EYNsfBhB7id7BLDw8bnRuU:kySvVux+EYufBhBmHL/b0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8c99afbb48b4ea2d62b065b70d8a73b_JaffaCakes118

Files

e8c99afbb48b4ea2d62b065b70d8a73b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

50b1f731ec3bcd90d3e9a82b227bbdcb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDateFormatW
DeleteFileW
GetStartupInfoA
lstrcpynW
GetSystemWow64DirectoryW
GlobalAddAtomW
ReadConsoleInputW
GetFileInformationByHandle
ClearCommError
FindVolumeMountPointClose
CreateNamedPipeW
GetCurrentProcess
GetCurrentProcessId
CompareStringW
GetModuleHandleW
WriteConsoleA
CreateMailslotA
WriteConsoleInputA
FileTimeToLocalFileTime
CreateIoCompletionPort
GetEnvironmentStringsW
GlobalFree
HeapCreate
HeapDestroy
CreateTimerQueueTimer
IsBadHugeWritePtr
DeleteTimerQueueTimer
GetSystemDirectoryA
FreeLibraryAndExitThread
GetProfileStringA
SetConsoleActiveScreenBuffer
FindFirstFileExW
GetFileTime
LoadResource
GetDateFormatA
GetEnvironmentStrings
SetLastError
FindFirstChangeNotificationW
CompareFileTime
WriteProfileStringA
RtlMoveMemory
CompareStringA
lstrcmpW
GetLogicalDriveStringsW
CopyFileExW
SearchPathW
FillConsoleOutputAttribute
GetSystemTime
GetSystemWindowsDirectoryA
WriteConsoleW
LockFile
SetLocalTime
SetFilePointer
MoveFileExW
GetVolumeNameForVolumeMountPointW
SetCurrentDirectoryA
SetFileAttributesA
ReadFileEx
GlobalFindAtomW
EscapeCommFunction
SetConsoleMode
GetExitCodeProcess
GetModuleHandleExW
lstrcatA
MultiByteToWideChar
FindCloseChangeNotification
SetDefaultCommConfigW
GetDriveTypeA
GetSystemDefaultLangID
FindResourceW
PulseEvent
ReadFile
VirtualUnlock
TerminateThread
VerifyVersionInfoA
SetEnvironmentVariableA
FindAtomW
MapViewOfFileEx
RaiseException
GetVolumeInformationA
HeapSetInformation
IsProcessorFeaturePresent
FindFirstChangeNotificationA
SearchPathA
EnumResourceLanguagesW
GlobalReAlloc
lstrcmpA
FormatMessageW
GetStringTypeW
InterlockedExchangeAdd
TransactNamedPipe
SetConsoleCursorPosition
SetNamedPipeHandleState
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GlobalFlags
VerSetConditionMask
GlobalHandle
FileTimeToDosDateTime
CreateSemaphoreA
FindNextVolumeW
EnumResourceLanguagesA
GetDriveTypeW
LocalHandle
GlobalDeleteAtom
PeekNamedPipe
GetThreadLocale
FindNextChangeNotification
LocalSize
SuspendThread
SetComputerNameA
CreateNamedPipeA
CreateRemoteThread
SetEvent
AllocConsole
OpenJobObjectW
GetModuleFileNameA
UnmapViewOfFile
HeapFree
VirtualProtect
CreateMutexA
InitializeCriticalSection
lstrcpyW
ReleaseMutex
LeaveCriticalSection
CreateProcessA
GetComputerNameA
MapViewOfFile
GetSystemTimeAsFileTime
InterlockedExchange
lstrcatW
LoadLibraryA
GetProcAddress
MoveFileExA
HeapAlloc
CreateDirectoryA
CopyFileA
VirtualQuery
EnterCriticalSection
GetDiskFreeSpaceW
CreateFileMappingA

gdi32

GetClipRgn
EnumFontFamiliesW
GetMetaFileBitsEx
GetWorldTransform
SetPixelV
CloseMetaFile
GetViewportOrgEx
PolyBezierTo
SetSystemPaletteUse
StrokeAndFillPath
GetTextExtentPointA
RectVisible
CreateFontIndirectA
GetMetaFileA
GetTextAlign
GetTextExtentExPointW
AddFontResourceA
GetObjectType
CreatePalette
GetDCOrgEx
GetCharWidthA
Polyline
CreateDCA
StartPage
EnumFontsA
GetTextFaceW
BeginPath
CreateHalftonePalette
UnrealizeObject
BitBlt
CopyEnhMetaFileA
GetPaletteEntries
DeleteMetaFile
ExtFloodFill
CreateCompatibleDC
SetWorldTransform
ExtTextOutW
SetLayout
EndPath
EnumFontFamiliesExA
CreatePatternBrush
GetCharacterPlacementA
EnumFontFamiliesExW
PlayEnhMetaFile
SetColorAdjustment
CloseEnhMetaFile
CreateFontIndirectW
EqualRgn
SetWindowExtEx
SetTextAlign
GetNearestColor
TextOutW
SetPaletteEntries
GetRegionData
CreateFontA
ModifyWorldTransform
GetFontResourceInfoW
SetViewportOrgEx
SetBitmapBits
GetBitmapBits
GetObjectA
CreateEnhMetaFileW
GetTextCharset
SetROP2
RemoveFontResourceA
SetAbortProc
GetOutlineTextMetricsA
ExtEscape
FillRgn
ScaleViewportExtEx

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50b1f731ec3bcd90d3e9a82b227bbdcb

Headers

File Characteristics

Imports

kernel32

gdi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 54KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 54KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB