2dadf5690fe789ccddacf828801fd46b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2dadf5690fe789ccddacf828801fd46b_JaffaCakes118
Size

260KB
MD5

2dadf5690fe789ccddacf828801fd46b
SHA1

4f8ccbd4bc99739355067fef94d97eb5bfe6e3f2
SHA256

585f2a571e34e03a8e3eb37e975a490abd1a3a13815fd39163e467f77063bb1b
SHA512

b9921d07f605f466ddb4cd589c8ceee4bfd549c8311af7c312972fbfda8fe929adf3c99198dad1a3c559d02dfc88a8a1556684928dbcff9ea6a918dce11f22cc
SSDEEP

6144:0MYWUoFIa0GkHuMJrSIDMKvsvn0J6wQ/BpCd1+NTPKY7to:oWxaXvHSIIlv0JlkKd1+1PKYho

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2dadf5690fe789ccddacf828801fd46b_JaffaCakes118

Files

2dadf5690fe789ccddacf828801fd46b_JaffaCakes118
.dll windows:1 windows x86 arch:x86

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBA
ConvertThreadToFiber
DebugBreak
DisconnectNamedPipe
DosDateTimeToFileTime
EnumResourceLanguagesW
ExitProcess
FindFirstChangeNotificationA
GetCommMask
GetCommState
GetConsoleAliasesW
GetConsoleMode
GetCurrencyFormatW
GetEnvironmentVariableA
GetFileSize
GetLocaleInfoW
GetLogicalDrives
GetModuleFileNameA
GetPrivateProfileStringA
GetProfileIntA
GetSystemTimeAsFileTime
GlobalMemoryStatus
HeapReAlloc
InterlockedDecrement
IsBadWritePtr
MapViewOfFileEx
MulDiv
OpenMutexW
PeekNamedPipe
PrepareTape
ScrollConsoleScreenBufferA
SetConsoleInputExeNameW
SetConsoleWindowInfo
SetDefaultCommConfigA
SetEvent
SetFileAttributesW
SetHandleInformation
SetSystemTimeAdjustment
Sleep
VirtualProtect
WaitCommEvent
WritePrivateProfileStructA
lstrcmpA
lstrcmpiA

user32

CallNextHookEx
CallWindowProcW
CharToOemA
ChildWindowFromPoint
CopyAcceleratorTableA
CreateIconFromResourceEx
DdeReconnect
DeferWindowPos
DrawEdge
EnumDesktopsW
EnumDisplaySettingsExW
EnumPropsW
GetClassWord
GetCursor
GetDesktopWindow
GetDialogBaseUnits
GetMenuContextHelpId
GetMenuState
GetParent
GetWindowContextHelpId
GrayStringA
LoadMenuIndirectA
OpenIcon
SetWindowTextA
ToAsciiEx
ToUnicodeEx
UnionRect
UserHandleGrantAccess
WINNLSEnableIME

gdi32

CreateScalableFontResourceA
DeviceCapabilitiesExA
DeviceCapabilitiesExW
EnumEnhMetaFile
ExcludeClipRect
FrameRgn
GdiComment
GetClipBox
GetClipRgn
GetKerningPairsW
GetPaletteEntries
GetPath
GetPixel
GetPixelFormat
GetRasterizerCaps
GetTextFaceA
GetTextFaceW
PlayEnhMetaFileRecord
SelectObject
UnrealizeObject

msvcrt

_ecvt
_expand
_getcwd
_hypot
_spawnl
_unloaddll
_unlock
_wchmod
_wmakepath
fgets
mblen
putc
strftime
strxfrm
tan
tanh
tmpnam
vsprintf
wcsftime
wcsrchr

Exports

Exports

ALbxogFWsuYEpgyj
BKfTzp
FojDOkqzeqxCtzmsjq
HxgaxfTkeE
KdZSzyuy
OymyvsydOufOk
PdtPuZnd
PuiyhDisJvOSfqLhpu
VHYfgcmsimdu
VenHSomvisr
VgzyeactZhIcBYlCG
WKQeiIaXtSrzJh

Sections

.text
Size: 8KB - Virtual size: 664KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 246KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mdata
Size: 512B - Virtual size: 340B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7749a3396b40e2a20cc5110b23055b1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 664KB

.data Size: 246KB - Virtual size: 260KB

.mdata Size: 512B - Virtual size: 340B

.rdata Size: 1024B - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 800B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 664KB

.data
Size: 246KB - Virtual size: 260KB

.mdata
Size: 512B - Virtual size: 340B

.rdata
Size: 1024B - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 800B

.reloc
Size: 2KB - Virtual size: 1KB