f2c117501fddbe4b43835681c8fb7dd2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f2c117501fddbe4b43835681c8fb7dd2_JaffaCakes118
Size

190KB
MD5

f2c117501fddbe4b43835681c8fb7dd2
SHA1

efb389307c5bc954a2b1c33372a8b7580fefbceb
SHA256

8e1235c9d89b045e71bc748e2a3640baa006579e1f9f02bfc1d269c291889cba
SHA512

009aa5424a2985dd73a06fff0fbb4c39ff924a738bb4e9ba0e14b4f47c1c079ec5ed313c86038a675f2705a8409d755392555acc8164975b674311fc6b30f76c
SSDEEP

3072:V8+ZH3QKakSgZfPiavu7nh4WKwE4trX1LKiM69lgdHXct+Z3lu/s4OnUr:VJgr3AiavcfKf43LBQBXc8k/ROn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f2c117501fddbe4b43835681c8fb7dd2_JaffaCakes118

Files

f2c117501fddbe4b43835681c8fb7dd2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

6489b94fa1e49d8c5c7af77fe14424ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
GlobalAddAtomA
LoadLibraryA
GetDateFormatA
Sleep
GetCommandLineW
SetEvent
ExitProcess
SetThreadLocale
lstrcmpA
VirtualFree
RaiseException
InitializeCriticalSection
SetHandleCount
MulDiv
IsBadHugeReadPtr
FindClose
GetFileAttributesA
WideCharToMultiByte
VirtualAllocEx
lstrcpyA
MoveFileExA

user32

DrawMenuBar
InsertMenuItemA
DrawAnimatedRects
RegisterWindowMessageA
GetWindowTextA
GetWindowRect
ChildWindowFromPoint
SetParent
IsCharUpperA
GetDCEx
ShowScrollBar
GetKeyboardLayoutNameA
GetClassLongA
MoveWindow
SetMenu
GetWindowLongW
IsWindowEnabled
ShowOwnedPopups
SetClipboardData
EnableWindow
ScreenToClient
DefWindowProcA
KillTimer
SetRect
DestroyCursor
IsMenu
GetMenu
DefFrameProcA
SetMenuItemInfoA
MsgWaitForMultipleObjects
SetPropA
CloseClipboard
EnumThreadWindows
SetScrollPos
OpenClipboard
TranslateMDISysAccel
BeginPaint
GetMenuItemInfoA
InsertMenuA
GetCursorPos
DestroyIcon
IsWindowUnicode
GetSysColorBrush
UpdateWindow
GetWindowLongA
SetScrollInfo
GetClassNameA
DrawEdge
CallWindowProcA
CharUpperBuffA
CreateIcon
ClientToScreen
SetScrollRange
SetWindowPlacement
LoadStringA
CharLowerA
GetScrollRange
GetSystemMenu
GetWindowTextLengthA
GetTopWindow
MessageBeep
GetIconInfo

ole32

CoUnmarshalInterface
CoRegisterClassObject
CLSIDFromProgID

gdi32

GetTextAlign
SelectPalette

Exports

Exports

HbYfE@12
_60MfrE_@24
_ljQqYOKH8yaItq@24
priIsBUWh
HNvjHz@8
9cdS3n9
_QLTAck@20
_113ZqHlHXXG@8
qJYrP3pHp@4
2ZALy1PVi@4
_rvKFAqxAy8fB
_e7vlpC_XVmj

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 1024B - Virtual size: 523B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 316B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6489b94fa1e49d8c5c7af77fe14424ed

Headers

File Characteristics

Imports

kernel32

user32

ole32

gdi32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 10KB - Virtual size: 169KB

.data Size: 149KB - Virtual size: 149KB

.abdata Size: 1024B - Virtual size: 523B

.edata Size: 512B - Virtual size: 316B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 10KB - Virtual size: 169KB

.data
Size: 149KB - Virtual size: 149KB

.abdata
Size: 1024B - Virtual size: 523B

.edata
Size: 512B - Virtual size: 316B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB