360dc0714d061a7a35fa1699e08fc108_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

360dc0714d061a7a35fa1699e08fc108_JaffaCakes118
Size

125KB
MD5

360dc0714d061a7a35fa1699e08fc108
SHA1

d0954c351561119a8a29f2ec232c3a38084d55fa
SHA256

9de7986ba99bae0eac65c7e9e6ca4fe422bada8d5c1cc6bd12fdcc588852cadb
SHA512

9709554a279d3438e30f9ad0a12518ebd6281e20bbe482ba4112812510b4d5d1852554626eabc2bdcb484cb928dff9d9cf3576cd93024078f7adc512d1585c25
SSDEEP

3072:OmsSpEvRV4Us5DCgeR8CJ2DImP231tokqE5voznTUBlIkO:Oms7vbOeLJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
360dc0714d061a7a35fa1699e08fc108_JaffaCakes118

Files

360dc0714d061a7a35fa1699e08fc108_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7b447c635370e244edf6d86486c5efe9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetCommandLineA
lstrcmpiW
FreeLibrary
LocalFree
LocalAlloc
MulDiv
GlobalAlloc
GlobalLock
MultiByteToWideChar
GetACP
WideCharToMultiByte
lstrlenW
GetProcessHeap
VirtualProtect
GetModuleHandleW
GlobalFree
GlobalUnlock
GlobalHandle
lstrlenA

user32

UnregisterClassW
GetScrollPos
GetSysColor
GetClientRect
LoadStringW
ReleaseDC
GetDC
SetWindowPos
AdjustWindowRect
GetWindowLongW
GetWindowRect
LoadCursorW
DefWindowProcW
SetWindowLongW
ShowWindow
InvalidateRect
DialogBoxParamW
GetSystemMetrics
GetActiveWindow
CharUpperBuffW
CharLowerW
CharPrevW
CharNextW
OffsetRect
DrawTextW
SetRectEmpty
FillRect
SetTimer
KillTimer
SetActiveWindow
SetDlgItemTextW
DrawIcon
SetRect
PostMessageW
IsRectEmpty
CheckMenuItem
CreatePopupMenu
AppendMenuW
DestroyMenu
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClassInfoW
RegisterClipboardFormatW
RegisterClassW
BeginPaint
IsIconic
EndPaint
DestroyIcon
DefMDIChildProcW
ClientToScreen
TrackPopupMenu
PeekMessageW
PtInRect
GetCursorPos
GetSysColorBrush
GetKeyState
SendMessageW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

gdi32

SetPaletteEntries
SaveDC
RestoreDC
SetTextColor
ExcludeClipRect
CreateMetaFileW
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreatePatternBrush
CreateSolidBrush
GetDIBits
PatBlt
SetBkColor
GetClipBox
SetBitmapBits
StretchBlt
SetDIBitsToDevice
StretchDIBits
GdiFlush
SetStretchBltMode
RealizePalette
GetStockObject
SelectPalette
CreateCompatibleDC
CreateDIBSection
GetDeviceCaps
IntersectClipRect
GetDCOrgEx
LPtoDP
DeleteDC
SelectObject
DeleteObject
CreatePalette
GetPaletteEntries
GetObjectW
GetNearestPaletteIndex
SetDIBColorTable
AnimatePalette
CreateCompatibleBitmap

msvcrt

_adjust_fdiv
malloc
_initterm
free
_vsnwprintf
memset
_except_handler3

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b447c635370e244edf6d86486c5efe9

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

msvcrt

Sections

.text Size: 29KB - Virtual size: 29KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 69KB

.rsrc Size: 53KB - Virtual size: 53KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 69KB

.rsrc
Size: 53KB - Virtual size: 53KB

.reloc
Size: 2KB - Virtual size: 1KB