380696a5da21ca6bb7f91bbbffe253f9_JaffaCakes118

General

Target

380696a5da21ca6bb7f91bbbffe253f9_JaffaCakes118
Size

132KB
MD5

380696a5da21ca6bb7f91bbbffe253f9
SHA1

c7d3988a7a21f35961cb2205c337781eff097c8b
SHA256

01a83a1443d9be1948b24ca66ad267abdfb4b8f65ec7189edfbc989d30b96fc7
SHA512

92bd968e45f0ef1b706b556eeb287881a8d5d1e7315098c3396dc4d12426885b63bbce69468e8f1a60bc96015a58175cd6134e1d63ada42b068608fed36ebe2c
SSDEEP

3072:o7i1eE/1JywQ60rjo6Z7LEpvnimB/HYBRPk6:oKeE/1Jywb6JERnt/y1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
380696a5da21ca6bb7f91bbbffe253f9_JaffaCakes118

Files

380696a5da21ca6bb7f91bbbffe253f9_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9d1b9d5ef097fe021123a5ac7c3ebda9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
LoadLibraryA
GetModuleHandleA
CreateDirectoryA
GetTickCount
LocalFree
ReleaseMutex
GetCommandLineA
SetLastError
GetLastError
MapViewOfFile
ExitProcess
EnterCriticalSection
UnmapViewOfFile
lstrlenW
CreateEventA
lstrlenA
InterlockedDecrement
CloseHandle
GetProcAddress
CreateProcessA
InterlockedIncrement
CopyFileA
WaitForSingleObject
OpenEventA
InterlockedCompareExchange
Sleep
LeaveCriticalSection

ole32

OleCreate
OleSetContainedObject
CoInitialize
CoUninitialize
CreateBindCtx
CoCreateGuid

user32

RegisterWindowMessageA
PostMessageA
SetTimer
GetParent
TranslateMessage
GetSystemMetrics
SetWindowLongA
SendMessageA
KillTimer
DefWindowProcA
GetWindowLongA
GetClassNameA
CreateWindowExA
DispatchMessageA
FindWindowA
PostQuitMessage
DestroyWindow
GetMessageA

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegDeleteValueA

Exports

Exports

fxNetmm

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d1b9d5ef097fe021123a5ac7c3ebda9

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB