2468326eb67688ae97978cd6c99af926_JaffaCakes118

General

Target

2468326eb67688ae97978cd6c99af926_JaffaCakes118
Size

120KB
MD5

2468326eb67688ae97978cd6c99af926
SHA1

7bfbf238a9a3a1ba386585ecf8b4f0fb511835fe
SHA256

d4857fdfe1186f866b3559465e10a4275d783f0736445308ac21e36e20813239
SHA512

c5b4378d578de7bd5ef79d045dd62fee316e3bc240de4a7494d41f4b3275ee50d8f43bdf916ed6d63f0d881dfe34e4dd40846adba35c9383431d9f2c69f1e916
SSDEEP

1536:A2ev0tK3JwjqAhc8NBTOEQdN4v51s4n5vdMjqpp8/ka51D8jXOS6P:Azrl9KOEQMRi4n5vdjpA5146V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2468326eb67688ae97978cd6c99af926_JaffaCakes118

Files

2468326eb67688ae97978cd6c99af926_JaffaCakes118
.dll windows:4 windows x86 arch:x86

dff8e4d5e2e3b1ad1bf5da85479c3dc6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

UnlockFile
SetHandleContext
SetConsoleCursorPosition
SetInformationJobObject
lstrlenA
GetCommModemStatus
SetFileAttributesA
ReleaseMutex
FlushConsoleInputBuffer
SetComputerNameExA
CreateFileMappingW
GetTempPathA
GetStartupInfoA
OpenMutexA
UnmapViewOfFile
GetModuleHandleA
WritePrivateProfileSectionA
_llseek
LocalFileTimeToFileTime
HeapQueryInformation
GetVolumePathNameA
VirtualAlloc
GetFileAttributesExA
WriteProcessMemory
WritePrivateProfileSectionA
FormatMessageA
GetSystemTimes
GetCommandLineA
GetPrivateProfileStructA

gdi32

RemoveFontResourceA

user32

SystemParametersInfoA
CharToOemBuffA
PeekMessageA
CreateWindowStationA
RegisterServicesProcess
MessageBoxExA
MapDialogRect
SetSystemMenu
IsCharAlphaNumericW
GetCursor
SetDeskWallpaper
SetTaskmanWindow
GetMenuContextHelpId
RealChildWindowFromPoint
GetRegisteredRawInputDevices
GetWindowTextA
LoadBitmapA
RemovePropA
GetLastActivePopup
GetWinStationInfo
MapDialogRect
GetMessageExtraInfo
FindWindowExA
SetSystemMenu
IsCharLowerA
LockWorkStation
TileWindows
GetMenuItemInfoA
CheckMenuRadioItem

Exports

Exports

Scnwjlqqqd
Brsqdxa
OpenRqgrnhpeii

Sections

.text
Size: 108KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 536B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dff8e4d5e2e3b1ad1bf5da85479c3dc6

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 126KB

.data Size: - Virtual size: 536B

.idata Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 108KB - Virtual size: 126KB

.data
Size: - Virtual size: 536B

.idata
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB