2569d2c5ffc59365def4114e251a8cb6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2569d2c5ffc59365def4114e251a8cb6_JaffaCakes118
Size

120KB
MD5

2569d2c5ffc59365def4114e251a8cb6
SHA1

f41080bdcbc459b365663b64c75dd65430efa8de
SHA256

b3e3426c41dc332585738e9520c8008dc8fae10a95a0fc898cf8582875bd2761
SHA512

78c8afb9240326e048c5098def9689a6c7045bb457dde7275725c1e25e2fc999ccc421fbc84502949107a7f1c4b98774604289c68f1989b090203a024ce0adff
SSDEEP

1536:eiIDvf7EWlkslJEX1l7zoaAb/JKi1NapCcpbvyAN2RfUmdvqr9PxDtE+:ji7rkv37zoDbEi1N+z2AMHu9ZDtE+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2569d2c5ffc59365def4114e251a8cb6_JaffaCakes118

Files

2569d2c5ffc59365def4114e251a8cb6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

007f30fac9113f3cebd76c6cd1cbbc01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
SizeofResource
FindResourceA
_lclose
_lread
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
GetModuleHandleA
HeapAlloc
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetHandleCount
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
RtlUnwind
LoadLibraryA
GetStringTypeW
GetProcAddress
Sleep
GetTickCount
GetStartupInfoA
LoadResource
GetCommandLineA
VirtualAlloc
VirtualProtect

user32

GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA
DispatchMessageA
GetDesktopWindow
GetCursorPos
PostMessageA
IsWindow
EndDialog
SetForegroundWindow
GetParent
DestroyMenu
AppendMenuA
UpdateWindow
SetWindowLongA
GetWindowLongA
DialogBoxParamA
GetClientRect
GetSystemMetrics
FindWindowA
EndPaint
CheckMenuItem
BeginPaint
SetCursor
GetForegroundWindow
SystemParametersInfoA
RegisterClassA
CallWindowProcA
IsDlgButtonChecked
SendNotifyMessageA
GetWindowTextA
SetWindowTextA
CheckDlgButton
GetDlgItem
LoadIconA
ShowWindow
GetDC
ReleaseDC
SendMessageA
MessageBoxA
DefWindowProcA
ClientToScreen
TrackPopupMenu
TranslateMessage
DestroyWindow

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA

gdi32

GetStockObject
SetDIBitsToDevice
SetStretchBltMode

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

007f30fac9113f3cebd76c6cd1cbbc01

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 48KB - Virtual size: 79KB

.rsrc Size: 28KB - Virtual size: 24KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 48KB - Virtual size: 79KB

.rsrc
Size: 28KB - Virtual size: 24KB

.reloc
Size: 4KB - Virtual size: 2KB