2a69c7f02b287529af133e3bb61c2dfa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2a69c7f02b287529af133e3bb61c2dfa_JaffaCakes118
Size

72KB
MD5

2a69c7f02b287529af133e3bb61c2dfa
SHA1

3e0bb5056241ad8d03b1923141b3c614a804ce17
SHA256

9fc470c2f08098e159a58dc3510e7cfa0f641dbba91cd24da3f5081066fd890f
SHA512

38ba414921cdacc620835265a5774b7474c41cbae134f27caaff18a3c866c639b5dfb44e31597048dab32724c9ce5012c3c0ba69d0c9ae2aa36982e85bee283f
SSDEEP

1536:3ALAjRVmzqinHvRNA9SS8WBHbdHyZD2S:3UW6zZHvjA9SS8W5bdHyZD2S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a69c7f02b287529af133e3bb61c2dfa_JaffaCakes118

Files

2a69c7f02b287529af133e3bb61c2dfa_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d7feb0c4bb1036ec87a2ff3dff2c59f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

UnmapViewOfFile
GetProcessHeap
EnterCriticalSection
InterlockedExchange
GetProcAddress
LeaveCriticalSection
VirtualQuery
lstrlenA
CopyFileA
CloseHandle
HeapAlloc
GetSystemTimeAsFileTime
VirtualProtect
LoadLibraryA
CreateProcessA
CreateFileMappingA
GetModuleFileNameA
InitializeCriticalSection
GetComputerNameA
MoveFileExA
GetModuleHandleA
FlushViewOfFile
GetLocaleInfoW
lstrcmpA
CreateToolhelp32Snapshot
GetNumberFormatA
GetModuleHandleExW
GetDateFormatA
FindResourceW
CreateWaitableTimerW
RtlMoveMemory
GetLargestConsoleWindowSize
RemoveDirectoryW
SetProcessWorkingSetSize
GetLocalTime
GlobalMemoryStatus
GlobalHandle
SetLastError
SetWaitableTimer
GetComputerNameExW
GetTimeZoneInformation
CallNamedPipeA
GetConsoleOutputCP
GetLogicalDriveStringsW
GetCurrentThread
SetEnvironmentVariableA
DeleteFileA
ReadFile
GetProfileIntA
LoadResource
GetCommandLineA
GetVolumeInformationW
CreateMailslotW

user32

DispatchMessageA
CallNextHookEx
SetWindowsHookExA
GetMessageA
IsDialogMessageW
ReleaseCapture
GetInputState
PackDDElParam
CreateIconFromResourceEx
GetScrollInfo
IsIconic
FindWindowExA
SetDlgItemTextW
GetTopWindow
AllowSetForegroundWindow
CloseDesktop
SetWindowLongW
NotifyWinEvent
CharLowerBuffA
SetClassLongA
GetMenuItemInfoW
GetClassNameA
PostMessageA
GetMenuState
GetMenuItemInfoA
CallMsgFilterW
FrameRect
OemToCharBuffA
TabbedTextOutW
MessageBoxW
MapVirtualKeyW
IsRectEmpty
DispatchMessageW
HideCaret
IsZoomed
CallWindowProcA
GetCaretBlinkTime

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7feb0c4bb1036ec87a2ff3dff2c59f5

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB