2203d0c2c73f393d55c582052ec9b254_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2203d0c2c73f393d55c582052ec9b254_JaffaCakes118
Size

114KB
MD5

2203d0c2c73f393d55c582052ec9b254
SHA1

ed04f5ee0d365ba4ab7449ae0dcd013402a3210c
SHA256

db1a7f8603a35ca56725983fede2ad282e2a23affca2d67ebe43d8f107db2493
SHA512

3e99e9ff6dba75a30e8b88017e81f918fbdabea8984d8234d6686b0d3b5f2ae376bad77581ca351caf7df778410dd64f426176cc002e677658319af32f222b33
SSDEEP

1536:zsZwa/eR84/GDzSeKzw9jUPxxXIh0FCVNG3Q/qIh0FCVNG3Q/M:zywatDzSuY5xXzoG3QCzoG3Q

Score

1^/10

Malware Config

Signatures

Files

2203d0c2c73f393d55c582052ec9b254_JaffaCakes118
.dll windows:5 windows x86 arch:x86

f7261e910592986bc957118014f9d233

Code Sign

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6a
Certificate

Issuer

CN=evtwetvbqwe45vb2

Not Before

01/03/2012, 08:06

Not After

31/12/2039, 23:59

Subject

CN=evtwetvbqwe45vb2

Extended Key Usages

ExtKeyUsageCodeSigning

75:48:00:bf:87:23:de:1e:10:c1:88:13:30:59:e3:69:1d:e3:92:c1
Signer

Actual PE Digest

75:48:00:bf:87:23:de:1e:10:c1:88:13:30:59:e3:69:1d:e3:92:c1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedCompareExchange
LoadLibraryA
GetProcAddress
CreateFileA
lstrcpyA
lstrlenA
GetWindowsDirectoryA
VirtualAlloc

user32

BroadcastSystemMessageA
ChangeDisplaySettingsExA
ChangeMenuW
CharLowerBuffW
CharPrevA
CharUpperW
CountClipboardFormats
CreateDesktopW
CreateIconFromResourceEx
CreateMenu
DdeAddData
DdeEnableCallback
DdeGetLastError
DdeNameService
DefFrameProcA
DeferWindowPos
DrawFrameControl
EndMenu
EnumDesktopsA
EnumDesktopsW
EnumDisplayDevicesW
EnumDisplayMonitors
EnumPropsExA
EnumWindowStationsA
EnumWindowStationsW
FindWindowExW
GetAsyncKeyState
GetCaretBlinkTime
GetClassInfoExW
GetClassWord
GetClipboardFormatNameA
GetComboBoxInfo
GetDesktopWindow
GetDlgCtrlID
GetKeyboardLayout
GetKeyboardLayoutNameA
GetLastActivePopup
GetListBoxInfo
GetMenuDefaultItem
GetMenuStringW
GetOpenClipboardWindow
GetShellWindow
GetTitleBarInfo
GetWindowDC
GrayStringW
HideCaret
HiliteMenuItem
IMPGetIMEA
IMPQueryIMEA
InternalGetWindowText
IsWindow
LoadAcceleratorsA
LoadImageW
LockWindowUpdate
MessageBoxExA
OemToCharBuffW
OemToCharW
OpenIcon
PeekMessageA
PostMessageA
RealGetWindowClassA
ReplyMessage
ReuseDDElParam
SendDlgItemMessageA
SendNotifyMessageW
SetCaretPos
SetDeskWallpaper
SetDlgItemInt
SetDlgItemTextA
SetScrollInfo
SetScrollRange
SetShellWindow
SetWindowPlacement
SetWindowsHookA
ShowCaret
SubtractRect
SwitchDesktop
SystemParametersInfoA
SystemParametersInfoW
ToUnicode
UnhookWindowsHookEx
UnregisterDeviceNotification
WINNLSEnableIME

ole32

BindMoniker
CLSIDFromProgIDEx
CoCreateGuid
CoCreateInstance
CoDisableCallCancellation
CoFileTimeNow
CoGetInstanceFromFile
CoGetMarshalSizeMax
CoGetObject
CoGetStandardMarshal
CoInitializeEx
CoInitializeSecurity
CoInstall
CoIsHandlerConnected
CoQueryProxyBlanket
CoReactivateObject
CoRegisterMessageFilter
CoTaskMemFree
CoTaskMemRealloc
CoTreatAsClass
CoUnmarshalHresult
CreateAntiMoniker
CreateBindCtx
CreateDataAdviseHolder
CreateDataCache
CreateFileMoniker
CreateGenericComposite
CreateOleAdviseHolder
CreateStdProgressIndicator
FreePropVariantArray
GetClassFile
GetConvertStg
GetHGlobalFromStream
GetRunningObjectTable
HACCEL_UserFree
HACCEL_UserUnmarshal
HBITMAP_UserMarshal
HBRUSH_UserMarshal
HDC_UserMarshal
HENHMETAFILE_UserFree
HGLOBAL_UserFree
HGLOBAL_UserMarshal
HICON_UserSize
HICON_UserUnmarshal
HMENU_UserMarshal
HMENU_UserUnmarshal
HMETAFILEPICT_UserSize
HMETAFILE_UserSize
HPALETTE_UserUnmarshal
HkOleRegisterObject
IIDFromString
MkParseDisplayName
OleConvertIStorageToOLESTREAM
OleConvertOLESTREAMToIStorage
OleConvertOLESTREAMToIStorageEx
OleCreateEx
OleCreateFromDataEx
OleCreateFromFile
OleCreateLinkEx
OleCreateLinkFromData
OleCreateLinkFromDataEx
OleCreateLinkToFileEx
OleGetIconOfFile
OleInitializeWOW
OleLoad
OleLockRunning
OleMetafilePictFromIconAndLabel
OleNoteObjectVisible
OleRegGetMiscStatus
OleSaveToStream
OleUninitialize
OpenOrCreateStream
SNB_UserSize
SNB_UserUnmarshal
STGMEDIUM_UserMarshal
StgGetIFillLockBytesOnFile
StgOpenAsyncDocfileOnIFillLockBytes
StgOpenStorageOnILockBytes
StringFromGUID2
StringFromIID
UtConvertDvtd16toDvtd32
UtGetDvtd16Info
UtGetDvtd32Info
WdtpInterfacePointer_UserMarshal
WriteClassStm
WriteFmtUserTypeStg

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7261e910592986bc957118014f9d233

Code Sign

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6aCertificate

Extended Key Usages

75:48:00:bf:87:23:de:1e:10:c1:88:13:30:59:e3:69:1d:e3:92:c1Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 1024B - Virtual size: 648B

.text Size: 19KB - Virtual size: 19KB

.rsrc Size: 82KB - Virtual size: 81KB

.reloc Size: 1KB - Virtual size: 1KB

73:c2:e8:4a:e6:53:2c:94:4e:85:92:3a:67:87:27:6a
Certificate

75:48:00:bf:87:23:de:1e:10:c1:88:13:30:59:e3:69:1d:e3:92:c1
Signer

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 1024B - Virtual size: 648B

.text
Size: 19KB - Virtual size: 19KB

.rsrc
Size: 82KB - Virtual size: 81KB

.reloc
Size: 1KB - Virtual size: 1KB