38cc1d2980389a083a5b723ea3d435ee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

38cc1d2980389a083a5b723ea3d435ee_JaffaCakes118
Size

837KB
MD5

38cc1d2980389a083a5b723ea3d435ee
SHA1

ccc9aaf76d3f304bd6ac61395d7d14e64541cbb8
SHA256

70ac6e128df5e3dff8d9c1a3cbd8aac309146fafe4f2b45147e0f2695c257d2c
SHA512

b5300fb782cce4125ed5a5a70c1655e86bdf01208dbf66f53895ec84070f943506af279248c05080036bd9d602af68b49b9a812aff53f233bce7f1f42a3979b2
SSDEEP

12288:r8gWDfCpvOpXMReF+v+05LFLP+TL5uteK0o:5pvOWsF+v+05LFLm3ZKb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38cc1d2980389a083a5b723ea3d435ee_JaffaCakes118

Files

38cc1d2980389a083a5b723ea3d435ee_JaffaCakes118
.dll windows:4 windows x86 arch:x86

85a9e6f6597b940150b4fee5dc44adc8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

winmm

DefDriverProc
timeGetTime

kernel32

GlobalUnlock
GlobalFree
CreateSemaphoreA
CloseHandle
WaitForSingleObject
GlobalAlloc
GlobalHandle
IsBadReadPtr
GlobalLock
GetLastError
GetSystemInfo
FreeLibrary
GetProcAddress
LoadLibraryA
LocalAlloc
LocalLock
GetCommandLineA
LocalHandle
LocalUnlock
LocalFree
MultiByteToWideChar
ReleaseSemaphore
OutputDebugStringA
TerminateProcess
GetCurrentProcess
SetFilePointer
SetStdHandle
GetLocaleInfoW
GetLocaleInfoA
FlushFileBuffers
LCMapStringW
LCMapStringA
HeapFree
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
HeapCreate
RaiseException
RtlUnwind
HeapAlloc
GetModuleHandleA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
ExitProcess
GetModuleFileNameA
DeleteCriticalSection
WriteFile
HeapDestroy
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW

user32

wsprintfA
DialogBoxParamA
IsDlgButtonChecked
CheckRadioButton
LoadStringA
EndDialog
SetDlgItemTextA
PostMessageA
EndPaint
GetWindowRect
LoadBitmapA
GetDC
ReleaseDC
GetDlgItemTextA
ShowWindow
MessageBoxA
GetDlgItemInt
SetDlgItemInt
SendMessageA
GetDlgItem
EnableWindow
WinHelpA
CheckDlgButton
GetWindowLongA
BeginPaint

gdi32

SelectObject
DeleteDC
CreateCompatibleDC
GetObjectA
GetSystemPaletteEntries
BitBlt

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA

Exports

Exports

AboutDialogProc
ConfigureDialogProc
DllMain
DriverDialogProc
DriverProc

Sections

.text
Size: 389KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 268KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

85a9e6f6597b940150b4fee5dc44adc8

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 389KB - Virtual size: 389KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 268KB - Virtual size: 282KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 20KB - Virtual size: 20KB

.text Size: 115KB - Virtual size: 116KB

.text
Size: 389KB - Virtual size: 389KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 268KB - Virtual size: 282KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 20KB - Virtual size: 20KB

.text
Size: 115KB - Virtual size: 116KB