ffca3d9bb6448927a73a558f478964cc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ffca3d9bb6448927a73a558f478964cc_JaffaCakes118
Size

319KB
MD5

ffca3d9bb6448927a73a558f478964cc
SHA1

302f703db505b128dc482f9655a1c04773cdb671
SHA256

bd2efc06bdd9307c1683854ee4f79b0c3535dfe500c33a1d3bf7a16700d19403
SHA512

ddc1488cbe11e4cd88646d6155a489f734e22d55a7d9e6f3945abfcfc56bd2127b13ac79dd539c44d18ee7c44c87d6c070e9ee9a9558332f21cabb582a04f92d
SSDEEP

6144:HGjH2eXl1kO+hLNZxQQbhEAWhEG56Tmyn9d0SJl0OZnjYnJDyO+zpb0CiukYhZ:HGjH2eXlaO+h5TQQtEtSG56iOR1IJDyB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffca3d9bb6448927a73a558f478964cc_JaffaCakes118

Files

ffca3d9bb6448927a73a558f478964cc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

c0b5a56aec150c1e833607f4d1a3a74a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

version

VerQueryValueA

gdi32

CreateFontIndirectA
SaveDC
GetCurrentPositionEx
CreateDIBSection
CreateBitmap
RestoreDC
SelectPalette
SetTextColor
CopyEnhMetaFileA

user32

ScrollWindow
SetActiveWindow
SetWindowPos
SetTimer
TranslateMessage
DrawAnimatedRects
GetKeyState
CharNextA
OpenClipboard
EnumWindows
CallWindowProcA
CharNextW
PostQuitMessage
GetMenuItemCount
SetWindowTextA
IsIconic
CharUpperBuffA
GetSubMenu
DestroyMenu
GetKeyboardLayout
DrawEdge
RemovePropA
GetSysColorBrush
SetWindowLongA
SendMessageW
GetKeyboardType
EndPaint
WindowFromPoint
ShowWindow
DispatchMessageW
GetDesktopWindow
SetForegroundWindow
CharLowerA
GetDC
MessageBeep
EnumChildWindows
InsertMenuA
ScreenToClient
IsWindowVisible
DrawFrameControl
DestroyCursor
SetRect
IsWindowUnicode
ShowScrollBar
InflateRect
CreateWindowExA
LoadIconA
GetDCEx
CloseClipboard
SetCapture
PeekMessageA
SetCursor
EnableMenuItem
MapWindowPoints
DeleteMenu
GetClientRect
GetActiveWindow
DefMDIChildProcA
PeekMessageW
AdjustWindowRectEx
GetWindowRect
CheckMenuItem
SetPropA
MessageBoxA
OffsetRect
DestroyWindow
CharLowerBuffA
IsWindowEnabled
GetMessagePos
LoadKeyboardLayoutA
GetWindowThreadProcessId
BeginPaint
GetIconInfo
GetKeyboardLayoutNameA
EnableWindow
GetWindowLongA
ActivateKeyboardLayout
EqualRect
PostMessageA
SetScrollPos
MsgWaitForMultipleObjects
GetClipboardData
GetKeyboardLayoutList

kernel32

VirtualAllocEx
IsBadReadPtr
LoadLibraryExA
GetCommandLineA
GetModuleHandleA
GlobalAlloc
GetProcAddress
GetOEMCP
GetLastError
ExitProcess
GetVersionExA
GetCommandLineW

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES1
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES4
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES6
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES2
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES9
Size: 512B - Virtual size: 283B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES7
Size: 1024B - Virtual size: 530B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 682B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0b5a56aec150c1e833607f4d1a3a74a

Headers

File Characteristics

Imports

version

gdi32

user32

kernel32

Sections

.text Size: 114KB - Virtual size: 113KB

.data Size: 184KB - Virtual size: 183KB

RES1 Size: 2KB - Virtual size: 1KB

RES4 Size: 512B - Virtual size: 212B

RES0 Size: 2KB - Virtual size: 1KB

RES6 Size: 4KB - Virtual size: 3KB

RES2 Size: 1024B - Virtual size: 736B

RES9 Size: 512B - Virtual size: 283B

RES7 Size: 1024B - Virtual size: 530B

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1024B - Virtual size: 682B

.text
Size: 114KB - Virtual size: 113KB

.data
Size: 184KB - Virtual size: 183KB

RES1
Size: 2KB - Virtual size: 1KB

RES4
Size: 512B - Virtual size: 212B

RES0
Size: 2KB - Virtual size: 1KB

RES6
Size: 4KB - Virtual size: 3KB

RES2
Size: 1024B - Virtual size: 736B

RES9
Size: 512B - Virtual size: 283B

RES7
Size: 1024B - Virtual size: 530B

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1024B - Virtual size: 682B