7c2b254233327baa129b23ef060546dd_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7c2b254233327baa129b23ef060546dd_JaffaCakes118
Size

484KB
MD5

7c2b254233327baa129b23ef060546dd
SHA1

54c7f3f957418df84d7276e6bef6e9cc650adf4f
SHA256

da987a219265e891d9035ea7ae44ec35a93f8b713f336cc418362337b382f5ff
SHA512

dd39c1ab971f3da0d60ba008b63c0ba02eb43cf57505fbe7f1d166915e98052f3daddb9062dd28666356e8e149ecb5a0b768fcdae56680ea397f6644b68aff72
SSDEEP

6144:b+ShrJI2d9EuJmG4bEca8dfQLI6HiZty+7sAjsr3snFuOELljyHtaK:Fhr2k9Hp4rNQELZTlqGh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7c2b254233327baa129b23ef060546dd_JaffaCakes118

Files

7c2b254233327baa129b23ef060546dd_JaffaCakes118
.dll windows:4 windows x86 arch:x86

826185eca086764d9e006be98dcb2dc8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

InitCommonControls

gdi32

SetTextColor
SetStretchBltMode
SetBkMode
SetBkColor
SelectObject
GetStretchBltMode
StretchBlt
DeleteObject
DeleteDC
CreateSolidBrush
CreateFontA
CreateCompatibleDC
CreateBitmap
ExtTextOutA

kernel32

lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
lstrcatA
WriteProcessMemory
WriteFile
WideCharToMultiByte
VirtualQueryEx
VirtualProtectEx
UnmapViewOfFile
Sleep
SetFilePointer
RtlZeroMemory
ReadProcessMemory
ReadFile
OpenProcess
OpenFileMappingA
MulDiv
Module32Next
Module32First
MapViewOfFile
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalFree
GlobalAlloc
GetVersion
GetTickCount
GetProcAddress
GetPrivateProfileSectionA
GetPrivateProfileIntA
GetModuleHandleA
GetModuleFileNameA
GetLocalTime
GetFileType
GetFileSize
GetCurrentProcessId
FreeLibrary
EnterCriticalSection
CloseHandle
CreateDirectoryA
CreateFileA
CreateFileMappingA
CreateToolhelp32Snapshot
DeleteCriticalSection
DeleteFileA
ExitProcess

user32

wsprintfA
TrackPopupMenu
ShowWindow
SetWindowTextA
SetWindowPos
SetWindowLongA
SetTimer
SetFocus
SetDlgItemTextA
SetClipboardData
SetActiveWindow
SendMessageA
SendDlgItemMessageA
RedrawWindow
PtInRect
PostMessageA
PeekMessageA
OpenClipboard
MoveWindow
MessageBoxA
MapWindowPoints
LoadImageA
LoadIconA
KillTimer
IsWindowVisible
IsWindowEnabled
IsWindow
InvalidateRect
InflateRect
GetWindowThreadProcessId
GetWindowTextLengthA
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetParent
GetKeyboardState
GetKeyState
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetCursorPos
GetClientRect
FindWindowExA
FindWindowA
EnumChildWindows
EndPaint
EnableWindow
EnableMenuItem
EmptyClipboard
DestroyWindow
DestroyMenu
CreateWindowExA
CreatePopupMenu
CreateDialogParamA
CloseClipboard
CheckRadioButton
CallWindowProcA
BeginPaint
AppendMenuA

ws2_32

closesocket
connect
inet_addr
recv
send
socket
WSAAsyncSelect

Exports

Exports

InstHookProc
UnInstHookProc

Sections

UnPackEr
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

By
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LoveBoom
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

826185eca086764d9e006be98dcb2dc8

Headers

File Characteristics

Imports

comctl32

gdi32

kernel32

user32

ws2_32

Exports

Exports

Sections

UnPackEr Size: 344KB - Virtual size: 344KB

By Size: 4KB - Virtual size: 4KB

LoveBoom Size: 68KB - Virtual size: 68KB

Size: 28KB - Virtual size: 28KB

Size: 28KB - Virtual size: 28KB

Size: 8KB - Virtual size: 8KB

UnPackEr
Size: 344KB - Virtual size: 344KB

By
Size: 4KB - Virtual size: 4KB

LoveBoom
Size: 68KB - Virtual size: 68KB