0a1e5a309a3689ecc872cd510418bebf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0a1e5a309a3689ecc872cd510418bebf_JaffaCakes118
Size

67KB
MD5

0a1e5a309a3689ecc872cd510418bebf
SHA1

cb96112c943dcc08dad66b2fe8e32a94d83bb189
SHA256

cd85d5ca0fd70a640a6a86ed894e5e65040cfa930d4dc4cb003c42eebb0cfd67
SHA512

25693943d12ae95df79df29d46885982630ac839e1b28c564fc6f3da795d2a8e92e6c9bb0ec8fb37b7ae3cd0414d6a114fe35ee3819fe55dfeda47afe7ca95c3
SSDEEP

1536:UU44wUtQ02JwA6jcV4lI52L+ATR30BDZa2q3b3x:UdrUtQorI52rufS39

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a1e5a309a3689ecc872cd510418bebf_JaffaCakes118

Files

0a1e5a309a3689ecc872cd510418bebf_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ChangeMenuA
SetFocus
ShowCursor
ShowWindow
DrawTextA
MessageBeep
LoadIconA
GetMenu
CharUpperA
CharToOemBuffA
MessageBoxA

kernel32

GetCommandLineA
ExitProcess
CloseHandle
GetStartupInfoA
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnmapViewOfFile
GetModuleHandleA

wininet

InternetCanonicalizeUrlA
InternetSetOptionExA
InternetSetStatusCallbackA
HttpEndRequestA

advapi32

LsaGetUserName
RegEnumKeyA
LsaGetSystemAccessAccount
LsaGetRemoteUserName
LsaFreeMemory
LsaEnumerateTrustedDomainsEx
LsaEnumeratePrivileges
LsaEnumerateAccountsWithUserRight
LsaEnumerateAccountRights
LsaClose
LsaCreateAccount
LsaCreateTrustedDomainEx
LsaDeleteTrustedDomain

ole32

OleUninitialize
OleInitialize
DoDragDrop
CreateILockBytesOnHGlobal
CoUninitialize
CoCreateInstance
CoGetClassObject
CoGetMalloc
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx

msvbvm60

__vbaFileClose
__vbaDateStr

dsound

DirectSoundCreate
DirectSoundCaptureEnumerateW
DirectSoundEnumerateA

msvfw32

ICImageDecompress
ord2
DrawDibRealize

Sections

.text
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

Imports

user32

kernel32

wininet

advapi32

ole32

msvbvm60

dsound

msvfw32

Sections

.text Size: 27KB - Virtual size: 28KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 28KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB