18765976d4541da5bd8142bb06dace6d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

18765976d4541da5bd8142bb06dace6d_JaffaCakes118
Size

208KB
MD5

18765976d4541da5bd8142bb06dace6d
SHA1

721d56495038169b49722f3a6b71d29ae2896f29
SHA256

da112b20c86f4378537d8c320cad7c47097d59c3d0834cfd1600500d93add969
SHA512

0071b54ae64ab6eae06bbe37aa78dbe7d4deb8a22ea7aff1563e3a2f518473029bf8faf66db1af838b5489d73ad8ce9c3b45c6765ba15cd1704687be589a83de
SSDEEP

3072:/wPDHwX6bzWLhDtBLIpXwaj9TtocPt0lDN25VzlWClJp:Kbz6tIpz9TtfKNwsC1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18765976d4541da5bd8142bb06dace6d_JaffaCakes118

Files

18765976d4541da5bd8142bb06dace6d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

659de6146e8776e80189804d171f94c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

timeGetTime

opengl32

glLoadIdentity
glEnd
glViewport
glClearColor
glClear
glTexEnvi
glGetFloatv
glColor4f
glPushMatrix
glVertex2f
glDisable
glEnable
glBlendFunc
glColor4ub
glBegin
glPopMatrix

kernel32

LeaveCriticalSection
CreateFileA
FlushInstructionCache
InterlockedIncrement
InterlockedDecrement
GetLocaleInfoW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
VirtualProtect
GetProcAddress
GetModuleHandleA
Sleep
lstrcmpA
CloseHandle
CreateToolhelp32Snapshot
VirtualAlloc
FindFirstFileA
LoadLibraryA
GetPrivateProfileStringA
GetModuleFileNameA
CreateThread
Module32Next
Module32First
IsBadReadPtr
RaiseException
RtlUnwind
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
SetUnhandledExceptionFilter
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
DeleteCriticalSection
SetEndOfFile
EnterCriticalSection
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
WriteFile
FlushFileBuffers
SetFilePointer
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo
InitializeCriticalSection
InterlockedExchange
VirtualQuery
SetStdHandle
ReadFile
GetLocaleInfoA
GetSystemInfo
GetStringTypeA
GetStringTypeW

user32

GetAsyncKeyState

Exports

Exports

CreateInterface

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

659de6146e8776e80189804d171f94c4

Headers

File Characteristics

Imports

winmm

opengl32

kernel32

user32

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 12KB - Virtual size: 171KB

.reloc Size: 16KB - Virtual size: 13KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 12KB - Virtual size: 171KB

.reloc
Size: 16KB - Virtual size: 13KB