f28f4a9d80891c215149328ac5d2839a_JaffaCakes118

General

Target

f28f4a9d80891c215149328ac5d2839a_JaffaCakes118
Size

16KB
MD5

f28f4a9d80891c215149328ac5d2839a
SHA1

95f787c8e923ac73d4fc999dda8add5f86d105e5
SHA256

1f8fdcf42444937f065fb09c1d87defc4ba99067baf921d0e746ce526a187893
SHA512

7ab9410aad9108dd1c0d2eba0670e5a59fb6d5a7b919af54f8eab1e460f6d5533abff5d771a09c8892ff6542c248e1eac72061f0b14c9b1fcf5c2059eda44540
SSDEEP

384:s+6X9gqNBaUOmZsX1DJzHODvSmfJhKJHDVbKyVjb5ht5ncJQPDIc:qgq/zZsX1DtHCK4KJjbVbXt5ncJ+D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f28f4a9d80891c215149328ac5d2839a_JaffaCakes118

Files

f28f4a9d80891c215149328ac5d2839a_JaffaCakes118
.dll windows:4 windows x86 arch:x86

6a468911569d43b419d28635c603efc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MultiByteToWideChar
GetTickCount
CloseHandle
WriteFile
ReadFile
CreateFileA
lstrcatA
lstrcmpA
SetFilePointer
CreateEventA
GetProcAddress
GetTempPathA
GetFileAttributesA
HeapReAlloc
HeapFree
GetThreadLocale
GetLastError
GetFileAttributesW
GetSystemDefaultLCID
GlobalFree
GetProcessHeap
HeapAlloc
GlobalAlloc
lstrcpynA
lstrcpyA
GetModuleHandleA
GetUserDefaultLCID
lstrlenA

user32

ShowWindow
wsprintfA
CallWindowProcA
DestroyWindow
EnableWindow
CreateWindowExW
SetWindowLongA
SetDlgItemTextA
MessageBoxA
wsprintfW
SetWindowTextA
SendMessageA
GetDlgItem
GetFocus
IsWindowVisible
RegisterWindowMessageA
GetClientRect
GetWindowRect
CreateWindowExA
GetWindowLongA
BeginPaint

advapi32

RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

wininet

InternetConnectA
InternetSetFilePointer
InternetCloseHandle
InternetOpenA
HttpOpenRequestA

Exports

Exports

e
l
r

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a468911569d43b419d28635c603efc8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

wininet

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB