3904de0b43c9fdd728646c79a52c6d18_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3904de0b43c9fdd728646c79a52c6d18_JaffaCakes118
Size

55KB
MD5

3904de0b43c9fdd728646c79a52c6d18
SHA1

76d0190dc432015cd095470a2efc659cc69387c3
SHA256

ff776a93ec37dc4217a7778f19ddd3e3775767d4b364c9c0a2367d23b6af4c69
SHA512

37cec2104dbfc2e17b92ca4782a7e7e3058f63dadf222b3f2b66f90ead5a3077eb766fbfef0ba9568b217373567e3b64ec16f56d8086d0c937ccd16889aa3118
SSDEEP

1536:mS/USJwUkmEocPG4nU1VuKOX08FIZHszmJE:noLocPG4UCVX0dZMF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3904de0b43c9fdd728646c79a52c6d18_JaffaCakes118

Files

3904de0b43c9fdd728646c79a52c6d18_JaffaCakes118
.dll windows:4 windows x86 arch:x86

1fd7fb21d337cd0390a88ade3774a72d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHEnumKeyExA
UrlCanonicalizeA

kernel32

Beep
DnsHostnameToComputerNameA
ExitProcess
GetBinaryTypeA
CancelIo
CallNamedPipeA
BackupSeek
lstrlenW
lstrlenA
SetCurrentDirectoryA
FlushViewOfFile
GetDriveTypeW
GetDriveTypeA
HeapFree
GetWindowsDirectoryA
GetCurrentDirectoryA
GetSystemDirectoryW
GetSystemDirectoryA
GetComputerNameW
GetCurrentDirectoryW
lstrcmpW
HeapAlloc
GetProcessHeap
GetWindowsDirectoryW

advapi32

GetUserNameW

winmm

GetDriverModuleHandle
mmioOpenA

Exports

Exports

ssuo

Sections

.code
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 586B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fd7fb21d337cd0390a88ade3774a72d

Headers

File Characteristics

Imports

shlwapi

kernel32

advapi32

winmm

Exports

Exports

Sections

.code Size: 22KB - Virtual size: 22KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 26KB - Virtual size: 26KB

.rdata Size: 512B - Virtual size: 1B

.rdata Size: 512B - Virtual size: 1B

.rdata Size: 512B - Virtual size: 1B

.reloc Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 760B

.reloc Size: 1024B - Virtual size: 586B

.code
Size: 22KB - Virtual size: 22KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 26KB - Virtual size: 26KB

.rdata
Size: 512B - Virtual size: 1B

.rdata
Size: 512B - Virtual size: 1B

.rdata
Size: 512B - Virtual size: 1B

.reloc
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 760B

.reloc
Size: 1024B - Virtual size: 586B