f15cac15e7b9e7fbee8eb8473689a89a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f15cac15e7b9e7fbee8eb8473689a89a_JaffaCakes118
Size

116KB
MD5

f15cac15e7b9e7fbee8eb8473689a89a
SHA1

21f3f8161226b48b5100e3fbd238e70784b36e16
SHA256

c5ef3547d904980cf746bafaa9877e337c0cb0ce6468307ac5b6928f0162a38a
SHA512

7653bf31c734e2f769b7dcfe2fe0777dfdc222625964134d5c09f5920e4d37f802d3bc101f3c47cc1e34d9342bfd6dca43a37aa93ec809ba3ed47374deb3686f
SSDEEP

1536:saTIUsZKDXVJFjHe4lZJK1ohxAfooFfz3DiKac2D9x:Ps295lK2h9mz3aD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f15cac15e7b9e7fbee8eb8473689a89a_JaffaCakes118

Files

f15cac15e7b9e7fbee8eb8473689a89a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

ef571565912726ab6b950d2ccd1d0f3f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExpungeConsoleCommandHistoryW
EnumTimeFormatsA
GetCurrentDirectoryW
GetEnvironmentStringsA
OpenFileMappingW
lstrcatW
PurgeComm
DisableThreadLibraryCalls
SetDefaultCommConfigW
GetTempPathW
GetTickCount
GetCurrentThread
BackupRead
GetCommandLineW
ContinueDebugEvent
SystemTimeToFileTime
AddConsoleAliasW
VirtualAlloc
GetComputerNameW

user32

DdeDisconnect
InflateRect
DdeQueryStringA
GetMenuStringA
CreateWindowExW
DefDlgProcW
GetDoubleClickTime
DefMDIChildProcW
GetAppCompatFlags
DdeUnaccessData
CheckDlgButton
TranslateMDISysAccel
SetWindowStationUser
IsWindowEnabled
VkKeyScanExW
GetOpenClipboardWindow
DispatchMessageA
ChildWindowFromPoint
ScrollWindow
IsCharUpperA
DialogBoxIndirectParamAorW
GetClassInfoExW
InvalidateRgn
RegisterClassExW
TrackPopupMenu
MessageBoxA
GetDlgCtrlID
CreateMDIWindowA
MessageBoxW
DrawTextW
GetWindowDC
GetWindowTextA
ExcludeUpdateRgn
SetForegroundWindow

gdi32

GdiEntry8
RealizePalette
SetWorldTransform
GetEnhMetaFileHeader
GetTextMetricsA
GetCharWidth32W
GetWinMetaFileBits
GdiConvertAndCheckDC
SetDIBits
CreateSolidBrush
GdiConvertMetaFilePict
GdiAddFontResourceW
DeleteDC
CombineRgn
GetNearestPaletteIndex
DeleteColorSpace
GetCharWidthW
GetCharWidthFloatA
GdiEntry6
GetViewportExtEx
GdiAddGlsBounds
ExtTextOutA
SetDIBColorTable
gdiPlaySpoolStream
bMakePathNameW
GetEnhMetaFilePaletteEntries
DescribePixelFormat
SwapBuffers
MaskBlt
PlayMetaFile
BitBlt
GetFontLanguageInfo
GdiCreateLocalMetaFilePict

ole32

CoFreeAllLibraries
DllDebugObjectRPCHook
OleGetIconOfFile
OleCreateStaticFromData
MkParseDisplayName
OleCreateLinkFromDataEx
HWND_UserFree
SNB_UserSize
CoCreateInstanceEx
OleCreateLinkFromData
MonikerCommonPrefixWith
CoGetTreatAsClass
OleSetClipboard

Sections

.data
Size: 3KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 3KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 22KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 68KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef571565912726ab6b950d2ccd1d0f3f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Sections

.data Size: 3KB - Virtual size: 16KB

BSS Size: 3KB - Virtual size: 36KB

.idata Size: 22KB - Virtual size: 84KB

.rdata Size: 3KB - Virtual size: 8KB

.text Size: 68KB - Virtual size: 132KB

.reloc Size: 7KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 16KB

BSS
Size: 3KB - Virtual size: 36KB

.idata
Size: 22KB - Virtual size: 84KB

.rdata
Size: 3KB - Virtual size: 8KB

.text
Size: 68KB - Virtual size: 132KB

.reloc
Size: 7KB - Virtual size: 8KB