155d9505cc897307c2c0a5a41aa1b88f_JaffaCakes118

General

Target

155d9505cc897307c2c0a5a41aa1b88f_JaffaCakes118
Size

97KB
MD5

155d9505cc897307c2c0a5a41aa1b88f
SHA1

9249466d6758610e68d15a721fe5f23494606c09
SHA256

bb0bb82af562d52695abe2aa21b594f899732348785aa65dad8267943a365a8d
SHA512

520c18cdd1171848956c8c096edf62c67aec1e88828c05a1cf6f70dcaba42d3cb25bcfeb7d6cb54b941abe59287ec29edea2c3ed472935a9051050aabdd3874c
SSDEEP

3072:zg3MTx9DaW5+z/QFDO+In5Wc/yaLEE/aH74/:M3ExpaW5+z6wngiTa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
155d9505cc897307c2c0a5a41aa1b88f_JaffaCakes118

Files

155d9505cc897307c2c0a5a41aa1b88f_JaffaCakes118
.dll windows:4 windows x86 arch:x86

97a7dd8ce6c793338774d3b054af21f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

dinput

DirectInputCreateW
DirectInputCreateEx
DirectInputCreateA

kernel32

TlsGetValue
lstrlenA
lstrcpyA
lstrcatA
CloseHandle
CompareStringA
EnterCriticalSection
EnumResourceLanguagesA
EnumResourceLanguagesW
ExitProcess
ExitThread
FreeResource
GetCommandLineA
GetDateFormatA
GetFileSize
GetStartupInfoA
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MapViewOfFile
OpenFile
ReadFile
RtlUnwind
SetCurrentDirectoryA
SetEndOfFile
SetUnhandledExceptionFilter
TlsAlloc
TlsFree
VirtualAlloc

dsound

DirectSoundCaptureEnumerateA
DirectSoundEnumerateA
DirectSoundEnumerateW
DirectSoundCaptureCreate

shell32

ShellExecuteExA
ShellExecuteExW
ShellExecuteW
ShellExecuteA
SHBindToParent
SHGetMalloc

user32

EndPaint
LoadIconA
SetCursor
CloseWindow
BeginPaint
EndMenu
CreateMenu

olepro32

OleLoadPicture
OleCreateFontIndirect

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97a7dd8ce6c793338774d3b054af21f6

Headers

File Characteristics

Imports

dinput

kernel32

dsound

shell32

user32

olepro32

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 27KB - Virtual size: 28KB

.data Size: 8KB - Virtual size: 12KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 6KB - Virtual size: 8KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 27KB - Virtual size: 28KB

.data
Size: 8KB - Virtual size: 12KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 6KB - Virtual size: 8KB