38c7e1a974c98f2e6b25ec22b27e7b75_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

38c7e1a974c98f2e6b25ec22b27e7b75_JaffaCakes118
Size

96KB
MD5

38c7e1a974c98f2e6b25ec22b27e7b75
SHA1

8fb63c9645124754606d3c437046583c7fac6329
SHA256

110bedd0ee30b2a5302915b7d10115cc6bafc02d21335f8c284c30935521b7a7
SHA512

b50bbea4acfb1c6fbb168390b4313de2f9cc02ac0456074ec1b535e1890dde3891582b3f5998c3ead62064960b482c06da8d61dd81ff91888e59030bd95cfe4d
SSDEEP

1536:+lnARKXC1d/YVQi8DYRSXXKc245BEFo+7Z7APOQAzTnUmDh/PFEaFYWpUGwctj/p:+lAqX2tSSD2gBEZ7AW1TLDhPFEaFNUdO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38c7e1a974c98f2e6b25ec22b27e7b75_JaffaCakes118

Files

38c7e1a974c98f2e6b25ec22b27e7b75_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

61fe4b4ad1f79ed5b5fc86ceed80b692

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DuplicateHandle
GlobalDeleteAtom
ExpandEnvironmentStringsW
SetLocalTime
GetTimeFormatW
HeapDestroy
SystemTimeToTzSpecificLocalTime
RaiseException
SetupComm
ReadDirectoryChangesW
IsProcessorFeaturePresent
OpenSemaphoreA
GetFileAttributesExA
GetCommState
RemoveDirectoryW
OpenEventA
LocalLock
HeapLock
lstrlenA
GetDateFormatA
GetCommTimeouts
GetTimeFormatA
GetCommMask
WaitForMultipleObjectsEx
GlobalFlags
ReadConsoleA
SetInformationJobObject
GetLogicalDrives
ReleaseSemaphore
PeekConsoleInputW
TerminateJobObject
FindClose
GetFileAttributesExW
GlobalMemoryStatus
IsDBCSLeadByteEx
GetUserDefaultLCID
lstrcpyW
IsBadCodePtr
GetDriveTypeA
GetSystemTime
RemoveDirectoryA
GetThreadTimes
VirtualAlloc
WaitCommEvent
OpenFileMappingA
GetSystemPowerStatus
GetTempPathW
GetLogicalDriveStringsW
VirtualFree
OpenThread
EscapeCommFunction
GetLargestConsoleWindowSize
DeleteFileW
GetFileInformationByHandle
CompareStringA
lstrcpynA
FindFirstFileExW
DeleteCriticalSection
CreateNamedPipeW
GlobalAddAtomA
GetCommConfig
FlushViewOfFile
TerminateProcess
LocalFileTimeToFileTime
QueueUserWorkItem
DeviceIoControl
lstrcpynW
lstrcpyA
GetTempFileNameW
SetFilePointerEx
ConnectNamedPipe
GetStdHandle
CompareFileTime
SetVolumeLabelW
SetNamedPipeHandleState
PulseEvent
GetStartupInfoA
SetConsoleWindowInfo
VerifyVersionInfoW
LocalAlloc
GetSystemDefaultUILanguage
InterlockedCompareExchange
GetFileSizeEx
GetEnvironmentStrings
FindAtomA
GlobalFindAtomA
FormatMessageA
EnumResourceLanguagesW
AreFileApisANSI
SetProcessShutdownParameters
DosDateTimeToFileTime
AllocConsole
GetSystemDirectoryW
GetModuleFileNameW
CreateThread
FileTimeToDosDateTime
UnlockFile
GetStringTypeExA
SetErrorMode
VirtualUnlock
GetWindowsDirectoryW
SetFilePointer
GetCurrentProcess
EnumResourceLanguagesA
SetConsoleActiveScreenBuffer
GetLocaleInfoA
CancelWaitableTimer
CreateDirectoryW
FileTimeToLocalFileTime
BackupRead
EndUpdateResourceA
GetHandleInformation
GetFullPathNameA
FindFirstVolumeMountPointW
PurgeComm
SizeofResource
CreateActCtxW
CreatePipe
CloseHandle
GetModuleFileNameA
CreateFileA
GetComputerNameA
ExpandEnvironmentStringsA
Sleep
ReleaseMutex
HeapAlloc
HeapFree
CreateFileMappingA
MapViewOfFile
ReadFile
EnterCriticalSection
WaitForSingleObject
WriteFile
VirtualProtect
CopyFileA
CreateProcessA
GetProcAddress
GetCurrentProcessId
GetModuleHandleA
GetSystemTimeAsFileTime
GetLastError
LocalFree
LoadLibraryA
VirtualQuery
CreateDirectoryA
InterlockedDecrement
LeaveCriticalSection
FindFirstChangeNotificationA

user32

ShowCaret
FindWindowExW
CharNextExA
DrawIconEx
BroadcastSystemMessageW
CreateIcon
ChangeDisplaySettingsA
TabbedTextOutW
LoadStringA
LoadIconA
GetWindowTextLengthW
FindWindowExA
UnregisterClassW
GetWindowTextW
GetMenuItemID
DispatchMessageW
DestroyCaret
SetParent
GetWindowTextA
SetMenuItemBitmaps
SetWindowLongA
GetMonitorInfoA
GetMenuItemRect
GetTabbedTextExtentA
MoveWindow
GetProcessWindowStation
GetWindowContextHelpId
SetThreadDesktop
WindowFromPoint
InvertRect
GetCursor
LoadStringW
GetCursorPos
LoadCursorW
CreateDialogIndirectParamA
SetDlgItemTextW
GetMessagePos
OpenDesktopW
GetDialogBaseUnits
GetUpdateRgn
DestroyIcon
GetWindowDC
EnableMenuItem
SetMenuItemInfoA
MsgWaitForMultipleObjectsEx
GetClassInfoExA
GetMenuItemInfoW
GetCapture
NotifyWinEvent
DrawFocusRect
DialogBoxIndirectParamA
InsertMenuA
ChildWindowFromPointEx
FillRect
SetMenu
GetClassLongW
CreateMenu
VkKeyScanW
PostThreadMessageA
ToUnicodeEx
SetProcessWindowStation
ScreenToClient
GetDCEx
InvalidateRect
CreateDialogParamA
RegisterWindowMessageA
IsZoomed
GetDC
GetQueueStatus
OpenWindowStationA
WinHelpW
CheckMenuRadioItem
UnregisterClassA
EnumWindowStationsW
DialogBoxParamW
SendDlgItemMessageW
UnionRect
OemToCharA
ScrollWindowEx
CallMsgFilterW
GetScrollPos
UnpackDDElParam
ModifyMenuW
SetWindowTextW
PtInRect
LockWindowUpdate
ScrollWindow
EnumWindows
CopyAcceleratorTableA
CheckRadioButton
SetDlgItemTextA
IsCharAlphaW
CharLowerA
IsCharAlphaNumericA
CharPrevW
ReplyMessage
SetWindowWord
IsWindow
OemToCharBuffA
TrackPopupMenuEx
GetWindowInfo
TranslateAcceleratorW
CreateWindowExA
ReleaseCapture
DrawStateA
AdjustWindowRectEx
IntersectRect
CreateCaret
OpenWindowStationW
CharUpperBuffA
GetMenuItemCount
VkKeyScanA
SetSysColors
CopyRect
CallNextHookEx
PeekMessageA
GetClassNameA
DispatchMessageA
SendMessageA
FindWindowA
DialogBoxParamA

gdi32

GetBitmapDimensionEx
SetViewportExtEx
CreatePatternBrush
GetTextExtentExPointW
DescribePixelFormat
GetGraphicsMode
EnumFontsA
StartDocW
AddFontResourceW
CreateCompatibleDC
RemoveFontResourceA
SetROP2
EnumEnhMetaFile
PatBlt
GetWorldTransform
LineTo
AnimatePalette
SetMapMode
ResizePalette
FillRgn
SetRectRgn
GetCurrentPositionEx
CloseMetaFile
CreateBrushIndirect
CopyEnhMetaFileA
GetCharABCWidthsA
CreateFontIndirectA
ExtCreateRegion
TextOutW
CreateDIBitmap
StartDocA
SetMiterLimit
GetGlyphOutlineA
OffsetViewportOrgEx
SetPaletteEntries
Chord
OffsetWindowOrgEx
GetObjectW
CombineRgn
CloseEnhMetaFile
CreateICW
CreateBitmap
GetDCOrgEx
SetBitmapDimensionEx
Polygon
ExtTextOutW
GetNearestColor
GetBkMode
PtInRegion
SelectPalette
GetTextFaceW
BeginPath
SetViewportOrgEx
StrokeAndFillPath
CreateFontIndirectW
GetCharABCWidthsW
SetDIBColorTable
StrokePath
WidenPath
PolyPolyline
GetTextExtentPoint32W
SetMagicColors
GetTextExtentExPointA
FillPath
GetObjectType
PolylineTo
SelectObject
AbortDoc
CreatePen
GetRandomRgn
DPtoLP
CreateBitmapIndirect
GetViewportOrgEx
PaintRgn
PlayEnhMetaFile
CreateDIBSection
EnumFontFamiliesA
RealizePalette
Pie
ArcTo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61fe4b4ad1f79ed5b5fc86ceed80b692

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB