37d6a505f1a44440b9ad72f9b8b29618_JaffaCakes118

General

Target

37d6a505f1a44440b9ad72f9b8b29618_JaffaCakes118
Size

101KB
MD5

37d6a505f1a44440b9ad72f9b8b29618
SHA1

60a4f03b1be1f871db8f51859370e32ab84c9cd7
SHA256

caea092956d7d5e921e0d220b7e4b179dc01ecbc4ac415da877aedbf7a39a82c
SHA512

3d821c975a2eb4da7d6e98de5ea0e1f38d97e717297d60512e6200d9eed53c63ef29394b9bc777d240810c36b3e1e7682592193c533629c1784fc6a68892aa25
SSDEEP

3072:vEdK37EUuni4rEg18SYO0mIPdb013GsQWL82Q20//YzTMFK:l3khrh1aGsba8/bE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37d6a505f1a44440b9ad72f9b8b29618_JaffaCakes118

Files

37d6a505f1a44440b9ad72f9b8b29618_JaffaCakes118
.dll windows:5 windows x86 arch:x86

2babb457d789132fac78472d17767d57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_tzname
wcstombs
_dstbias
_daylight
strtoul
_initterm
_adjust_fdiv
__dllonexit
_onexit
isdigit
toupper
_strupr
strcspn
strncmp
strpbrk
strncat
_beginthreadex
_endthreadex
_stricmp
strtok
malloc
strstr
mktime
difftime
sscanf
strncpy
_strcmpi
_itoa
time
_ltoa
free
_strdup
swprintf
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
_ftol
atof
atoi
atol
sprintf
wcslen
_timezone
wcscpy

advapi32

RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW

kernel32

GetCommState
SetCommState
SetCommMask
SetCommTimeouts
ReadFile
Sleep
ClearCommError
WriteFile
ReleaseMutex
OpenMutexW
CreateFileW
ResetEvent
GetCurrentThreadId
GetCurrentProcessId
CreateEventW
CloseHandle
MultiByteToWideChar
SetEvent
WaitForSingleObject
LocalAlloc
LocalFree
TerminateThread
GetExitCodeThread
GetTimeZoneInformation
SetThreadAffinityMask
GetProcessAffinityMask
GetCurrentProcess
CreateMutexW

Exports

Exports

UPSCancelWait
UPSGetState
UPSInit
UPSStop
UPSTurnOff
UPSWaitForStateChange

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2babb457d789132fac78472d17767d57

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 82KB

.data Size: 7KB - Virtual size: 6KB

.rsrc Size: 1024B - Virtual size: 1000B

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 82KB - Virtual size: 82KB

.data
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 1024B - Virtual size: 1000B

.reloc
Size: 9KB - Virtual size: 8KB