7025612d0de5b999f8103a3f19a4900b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7025612d0de5b999f8103a3f19a4900b_JaffaCakes118
Size

1.1MB
MD5

7025612d0de5b999f8103a3f19a4900b
SHA1

bd93895183e6b53bed6aa723c68a94433f215212
SHA256

ae07684e1b8220f02038961d6e3f1d3fc25c4f5bf431f4d77fb63b4e6dd97596
SHA512

dadd12a8dd9d6a734eb61c07f42155d32a89cf1f0281029b82f94d29369b880fa1485ecadc42462952963e22b0332bdc736cf459b3e8ee061ecc2246f5c62936
SSDEEP

24576:R3hvyelDJIVHllElSYmKLib79fXWht0KvuEVY4CIBryN:phqYDJI5llkmRbsT0KWEVYvIhyN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Nartixx-S-Menu/DLL/Nartixx-S-Menu.dll

Files

7025612d0de5b999f8103a3f19a4900b_JaffaCakes118
.zip
Nartixx-S-Menu/DLL/Nartixx-S-Menu.dll
.dll windows:6 windows x86 arch:x86

79a147dd9e423b898ab9e39e46e81b56

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualAlloc
VirtualQuery
Sleep
AddVectoredExceptionHandler
GetTickCount64
GetProcAddress
MultiByteToWideChar
Beep
VirtualProtect
GetModuleHandleA
QueryPerformanceFrequency
QueryPerformanceCounter
GlobalAlloc
GlobalLock
GlobalUnlock
GetCommandLineA
WriteConsoleW
HeapSize
SetStdHandle
GetCurrentProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetOEMCP
GetACP
IsValidCodePage
HeapReAlloc
ReadConsoleW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
HeapAlloc
HeapFree
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
VirtualFree
GetProcessHeap
WriteProcessMemory
GetLastError
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetEndOfFile
SetFilePointerEx
AreFileApisANSI
CloseHandle
WideCharToMultiByte
FormatMessageW
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
GetCurrentThreadId
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetTickCount
GetModuleHandleW
EncodePointer
DecodePointer
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
SetEvent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
InitializeSListHead
SignalObjectAndWait
CreateThread
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetCurrentThread
GetThreadTimes
FreeLibrary
FreeLibraryAndExitThread
GetModuleFileNameW
LoadLibraryExW
GetVersionExW
DuplicateHandle
ReleaseSemaphore
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
CreateTimerQueue
LoadLibraryW
RtlUnwind
RaiseException
ReadFile
RemoveDirectoryW
DeleteFileW
ExitProcess
GetModuleHandleExW
GetFileSizeEx
GetStdHandle
GetFileType

user32

SetWindowLongW
CallWindowProcW
FlashWindowEx
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
GetKeyState
ClientToScreen
LoadCursorW
SetCursor
GetClientRect
SetCursorPos
GetAsyncKeyState
FindWindowW

d3dx9_43

D3DXAssembleShader

winmm

PlaySoundA

imm32

ImmSetCompositionWindow
ImmGetContext

Sections

.text
Size: 927KB - Virtual size: 926KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 958KB - Virtual size: 958KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Nartixx-S-Menu/Nartixx/Nartixx-Skins.json
Nartixx-S-Menu/Nartixx/globals.json
Nartixx-S-Menu/Nartixx/settings/Nartixx
Nartixx-S-Menu/Nartixx/skins.json
Nartixx-S-Menu/Nartixx/statrack.json

Sharing

General

Malware Config

Signatures

Files

79a147dd9e423b898ab9e39e46e81b56

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

d3dx9_43

winmm

imm32

Sections

.text Size: 927KB - Virtual size: 926KB

.rdata Size: 958KB - Virtual size: 958KB

.data Size: 23KB - Virtual size: 134KB

.reloc Size: 53KB - Virtual size: 52KB

.text
Size: 927KB - Virtual size: 926KB

.rdata
Size: 958KB - Virtual size: 958KB

.data
Size: 23KB - Virtual size: 134KB

.reloc
Size: 53KB - Virtual size: 52KB