067dcbe189f95436fcfd4bc075b53df4_JaffaCakes118

General

Target

067dcbe189f95436fcfd4bc075b53df4_JaffaCakes118
Size

14KB
MD5

067dcbe189f95436fcfd4bc075b53df4
SHA1

909333296c7745e80a59e38da50654b91b7c4327
SHA256

0e571927df8734920245ea19aac89ad1bfa1095cdb9b7084c38052d862de9064
SHA512

129bcb200d6d70065090df624826d3e36039ce6a2226dff4e1cd7de14ec2583d6791238c62a4d9e86d6d42aa0dc86006dc48820328be2dcbec14b57a37193212
SSDEEP

192:oJp7aAHXIynXW7p8wKJZ23gB88r8m6VHYjyG17FzfvtEiRZkxBcsn+6ZldRi/vy2:SL5Gcxsm6VHYjyyQcQ+6DdRKvL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
067dcbe189f95436fcfd4bc075b53df4_JaffaCakes118

Files

067dcbe189f95436fcfd4bc075b53df4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

56b2219b11c25d636c8a3c6a258cc375

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
WriteFile
ReadFile
CreateFileA
WideCharToMultiByte
lstrcatA
lstrcmpA
SetFilePointer
CreateEventA
GetTickCount
GetModuleHandleA
RtlUnwind
GetProcAddress
GetTempPathA
GetFileAttributesA
HeapReAlloc
HeapFree
GetProcessHeap
GetModuleFileNameA
MultiByteToWideChar
GetThreadLocale
GetSystemDefaultLCID
GetUserDefaultLCID
VirtualQuery
HeapAlloc
GlobalAlloc
lstrcpynA
lstrcpyA
InterlockedExchange
GlobalFree

user32

ReleaseDC
wsprintfA
CallWindowProcA
DestroyWindow
EnableWindow
CreateWindowExW
RegisterWindowMessageA
SetWindowLongA
SetDlgItemTextA
MessageBoxA
wsprintfW
SetWindowTextA
SendMessageA
GetDlgItem
GetFocus
IsWindowVisible
IsWindow
ShowWindow
GetClientRect
GetWindowRect
CreateWindowExA
GetWindowLongA

advapi32

RegSetValueExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

wininet

InternetConnectA
InternetOpenA
InternetCloseHandle
InternetSetFilePointer
HttpOpenRequestA

gdi32

RestoreDC

Exports

Exports

e
l
r

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56b2219b11c25d636c8a3c6a258cc375

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wininet

gdi32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB