fe39c7531d91c4bdce64aea0c15a5a5d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fe39c7531d91c4bdce64aea0c15a5a5d_JaffaCakes118
Size

198KB
MD5

fe39c7531d91c4bdce64aea0c15a5a5d
SHA1

bcb5cd7044418638757b457a354257ab0b8d751d
SHA256

ad6ec9c325de435fbf3cc82931ed452ae117932901fed10e8d488f300ad9787e
SHA512

558e1be9276193f203aeab72ff95a3f6698f4f9ddfea6903d9d9742c5b8a154bb1985de72de94b2a52543f1d1dbac723c950c440dd166e406a88d478345a2c7e
SSDEEP

3072:B1ZjwwSsD6I2w5z2hhnyP2wNml4f3er8RV6A6SdlR8xeRaJ59WKqWQxMrx3Ob:jj3BqhnyP2fWO/AR1At59WVdxMt3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe39c7531d91c4bdce64aea0c15a5a5d_JaffaCakes118

Files

fe39c7531d91c4bdce64aea0c15a5a5d_JaffaCakes118
.dll windows:5 windows x86 arch:x86

346d4bdaf240e593058bf2c4ac363b65

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatW
CreateFileW
ExitProcess
GetProcessHeap
GetWindowsDirectoryW
HeapAlloc

user32

DefFrameProcW
DefWindowProcW
DialogBoxParamW
DrawFocusRect
DrawMenuBar
EnableMenuItem
EndDialog
FrameRect
GetClientRect
GetDC
GetDlgItem
GetDlgItemInt
GetDlgItemTextW
GetKeyState
GetMenu
GetMessageW
GetSubMenu
CreateWindowExW
GetWindowLongW
IsCharAlphaW
IsDlgButtonChecked
LoadAcceleratorsW
LoadCursorW
LoadStringW
MessageBoxW
PostMessageW
PostQuitMessage
ReleaseCapture
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetCapture
SetCursor
SetCursorPos
SetDlgItemTextW
SetFocus
SetWindowLongW
SetWindowsHookExW
TranslateAcceleratorW
TranslateMDISysAccel
UnhookWindowsHookEx
CheckRadioButton
CheckMenuItem
CharUpperBuffW
CallWindowProcW
LoadIconA
GetSystemMenu

comdlg32

PrintDlgW
GetOpenFileNameW
FindTextW

advapi32

RegOpenKeyExW

Sections

.text
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

t1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

t2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

t3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 782B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

346d4bdaf240e593058bf2c4ac363b65

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

Sections

.text Size: 190KB - Virtual size: 189KB

.data Size: 512B - Virtual size: 84B

t1 Size: 1024B - Virtual size: 1000B

t2 Size: 1024B - Virtual size: 1000B

t3 Size: 1024B - Virtual size: 1000B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 782B

.text
Size: 190KB - Virtual size: 189KB

.data
Size: 512B - Virtual size: 84B

t1
Size: 1024B - Virtual size: 1000B

t2
Size: 1024B - Virtual size: 1000B

t3
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 782B