28edf2fd70339cd0d9fa90fba09aa094_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28edf2fd70339cd0d9fa90fba09aa094_JaffaCakes118
Size

39KB
MD5

28edf2fd70339cd0d9fa90fba09aa094
SHA1

596152a07df252376ebce02c1a5695d763fc4d02
SHA256

377b216c999b80354c469deff96b23a17b08659bc46f332b6f8a07e5ad7e23d6
SHA512

b437d93e48569304d899d309beb520a62d81c122f3efcce73354787c1d123d2c4ac92d24598a15f8b652a15ee657295b1c1f274f7a2641c9c8feef9d3472d7d1
SSDEEP

768:Mw1yGpC3sBnjP9ZlfteAGozdr8c4C5+7zPBHGmmBGStE:VsGpN1P9pVGEobeo9mmmceE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28edf2fd70339cd0d9fa90fba09aa094_JaffaCakes118

Files

28edf2fd70339cd0d9fa90fba09aa094_JaffaCakes118
.dll windows:1 windows x86 arch:x86

bbe7070777809a66b99ce732c6488136

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

AddAtomW
Beep
CloseProfileUserMapping
CompareStringW
CreateFileMappingA
EnumResourceNamesA
EnumTimeFormatsA
ExitProcess
FindFirstChangeNotificationA
FindNextFileA
FlushFileBuffers
GetBinaryTypeA
GetCommMask
GetCommState
GetConsoleAliasesA
GetConsoleWindow
GetFileSize
GetModuleFileNameA
GetOEMCP
HeapCompact
InitializeCriticalSectionAndSpinCount
InterlockedExchangeAdd
IsBadHugeWritePtr
SetEndOfFile
SetErrorMode
SetSystemPowerState
SizeofResource
Sleep
VirtualProtect
_hread
_lwrite
lstrcmpA
lstrcmpiA

user32

CallWindowProcA
CharToOemA
CreateDesktopW
CreateWindowExA
CreateWindowExW
DefMDIChildProcW
DlgDirSelectComboBoxExW
EnumWindowStationsW
GetClassWord
GetKBCodePage
GetMenu
GetMenuState
IMPSetIMEA
IsIconic
LockWindowUpdate
MapWindowPoints
MenuItemFromPoint
MessageBoxA
NotifyWinEvent
SendNotifyMessageW
SetMenuItemInfoA
SetSystemCursor
SetWindowLongA
TrackPopupMenu
TranslateMDISysAccel
WaitForInputIdle

gdi32

CreateDIBPatternBrush
CreateICA
GdiComment
GetClipBox
GetClipRgn
GetEnhMetaFileA
GetGlyphOutlineA
GetMetaFileA
GetMetaFileW
GetMetaFileBitsEx
GetPath
GetPixel
GetPixelFormat
GetTextFaceA
GetTextFaceW
PlayEnhMetaFile
SetBitmapDimensionEx
SetBrushOrgEx

shell32

SHGetDataFromIDListW
SHGetInstanceExplorer

msvcrt

_fpieee_flt
_setsystime
_spawnle
_unlock
_wcsnicoll
_wexecle
fputwc
fread
isspace
iswpunct
malloc
strerror
wcstoul

Exports

Exports

BenfuHSrZzExLth
CtwypoCMwmIaZxWz
GoEjAtsJljbdBsray
KbsazE
NbgiffVgcYWnjjNd
OgopisvCsfOcqiPm
OzGKhTIpsswe
PWpNtjhpkys
PrpjNvKWn
UcQarwvinji
UqZAjA
WcpftnJmRfzAcS
WfnSDu
WlqLgeZ

Sections

.text
Size: 8KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bdata
Size: 512B - Virtual size: 371B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbe7070777809a66b99ce732c6488136

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 84KB

.data Size: 23KB - Virtual size: 34KB

.bdata Size: 512B - Virtual size: 371B

.rdata Size: 2KB - Virtual size: 15KB

BSS Size: 1KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 776B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 84KB

.data
Size: 23KB - Virtual size: 34KB

.bdata
Size: 512B - Virtual size: 371B

.rdata
Size: 2KB - Virtual size: 15KB

BSS
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 776B

.reloc
Size: 2KB - Virtual size: 1KB