3381ca78b6cce939c7a894409f0934c9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3381ca78b6cce939c7a894409f0934c9_JaffaCakes118
Size

130KB
MD5

3381ca78b6cce939c7a894409f0934c9
SHA1

d716cafd3e6e297a229b06d3b78d7d7efb94a2dc
SHA256

97b881e38a4d818d373c24ec012484e537c88b862f026b53a10720b0b1a9b6f3
SHA512

fc71338d0b1f7555cafa7de3541977bad44223b5c68c35df667d589f812acb4efedd50c571c42233e6fa4d6a9772dbe6d6f69717caeb4bc6b5674006a0adae46
SSDEEP

3072:BcMZu7I+pL9x8ycpVFHz4wUDfbhYW+XD4US3uUC:BML8NT43QXDw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3381ca78b6cce939c7a894409f0934c9_JaffaCakes118

Files

3381ca78b6cce939c7a894409f0934c9_JaffaCakes118
.dll windows:5 windows x86 arch:x86

65f44a9336f6d8b9f2ec709362ee62c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

LoadStringA
RedrawWindow
HideCaret
ScreenToClient
GetDlgItemTextW
OffsetRect
CreateDialogParamW
GetDlgCtrlID
MapWindowPoints
SystemParametersInfoW
ClientToScreen
GetWindowRect
GetWindowDC
ClipCursor
MapVirtualKeyExW
ModifyMenuW
GetWindowLongA
SetCursorPos
IsChild
GetMessageA
GetDCEx
MessageBoxExW
DrawTextW
ArrangeIconicWindows
ToUnicodeEx
PeekMessageA
TabbedTextOutW
GetClientRect
SetWindowRgn
ChildWindowFromPoint
SetMenuItemBitmaps
CharLowerA
GetSysColor
IsDialogMessageW
GetShellWindow

kernel32

GetVersion
SetFileApisToOEM
GlobalLock
SetThreadExecutionState
LoadLibraryA
LockFile
GetTickCount
GetVersionExA
CreateEventW
FindFirstFileW
GetPriorityClass
SetNamedPipeHandleState
AddAtomW
GetFileType
GetAtomNameW
CancelIo
SetWaitableTimer
SystemTimeToFileTime

gdi32

SelectObject
GetObjectA
GetTextMetricsA
Polyline
PatBlt
GetStockObject
CreateEllipticRgnIndirect
SetRectRgn
GetBrushOrgEx
RestoreDC
EndPath
CreateBitmap
CreatePen
CreatePolygonRgn
CreatePenIndirect
SetDIBitsToDevice
GetPixel
GetBitmapBits

Exports

Exports

AlphaBlend
?MNDkjiduIUDIUiuDIUdIOpDJKKDLKJDLIuyd@@YGKEPA_WG@Z

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 20KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65f44a9336f6d8b9f2ec709362ee62c5

Headers

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 77KB - Virtual size: 77KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 15KB - Virtual size: 15KB

.xdata Size: 20KB - Virtual size: 115KB

.jdata Size: 12KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 77KB - Virtual size: 77KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 15KB - Virtual size: 15KB

.xdata
Size: 20KB - Virtual size: 115KB

.jdata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB