3efda22955bb576e1d63287188e840d6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3efda22955bb576e1d63287188e840d6_JaffaCakes118
Size

252KB
MD5

3efda22955bb576e1d63287188e840d6
SHA1

70e8f3a119f563057b5d43c57b2e454d71786652
SHA256

4bcef2419184ad6120550e78f61f57f242a0cb4c5b17e4322c75c4dd0138965e
SHA512

b0cd34158e979e8bab109a6d04662f6d61831c2f2429e559b01adf531bd5dc6ba7691e067f276cf76e9138d038a1f43ae714e04049a638eb13aecca1b9d86a7b
SSDEEP

6144:sW75zoV9M6E7BaAHIt4Bz/baTYRoadoupMEb:sWyOBa9AWsRj9pf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3efda22955bb576e1d63287188e840d6_JaffaCakes118

Files

3efda22955bb576e1d63287188e840d6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

84013bb840d70c9e4c981e612f1d1dbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetACP
LoadLibraryA
GetVersion
GetProfileStringA
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
GetProcAddress
SetErrorMode
GetFileAttributesA
GetDateFormatA
GetTimeFormatA
GetLastError
SetFileAttributesA
DeleteFileA
Sleep
GetVersionExA

user32

SendMessageA
DefWindowProcA
DrawTextA
FillRect
FrameRect
GetSysColor
RegisterClassExA
GetClassInfoExA
ShowScrollBar
ScrollWindowEx
SetScrollPos
SetFocus
BeginPaint
GetParent
EndPaint
ReleaseDC
SetWindowLongA
GetWindowLongA
InvalidateRect
GetDC
UpdateWindow
GetScrollInfo
SetScrollInfo
GetClientRect
IsWindow
SystemParametersInfoA
DestroyWindow
LoadCursorA
SetCursor
wsprintfA

gdi32

SelectObject
SetWinMetaFileBits
GetObjectA
GetStockObject
CreateRectRgnIndirect
SelectClipRgn
DeleteMetaFile
DeleteEnhMetaFile
DeleteObject
GetDeviceCaps
CreateSolidBrush
DeleteDC
StretchBlt
SetStretchBltMode
IntersectClipRect
CreateCompatibleDC
ExtTextOutW
SetTextJustification
SetBkColor
CreateDCA
StartDocA
EndPage
StartPage
EndDoc
GetEnhMetaFileA
GetMetaFileA
GetMetaFileBitsEx
SetBkMode
SetBrushOrgEx
GetTextMetricsA
GetTextExtentPoint32W
GetTextExtentExPointW
CreateFontIndirectA
PlayEnhMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
SetTextAlign
SetTextColor

comdlg32

PrintDlgA

winspool.drv

EnumPrintersA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

msvcp60

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z

msvcrt

?terminate@@YAXXZ
free
_endthread
malloc
strrchr
strncpy
_except_handler3
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
_CxxThrowException
_beginthread
strlen
strcat
strcmp
memcmp
memcpy
memmove
strcpy
__CxxFrameHandler
memset
__lconv_init
??1type_info@@UAE@XZ
strtok
??2@YAPAXI@Z
_adjust_fdiv
_initterm

Exports

Exports

PageWndProc

Sections

.text
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84013bb840d70c9e4c981e612f1d1dbb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

ole32

msvcp60

msvcrt

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 126KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 104KB - Virtual size: 101KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 128KB - Virtual size: 126KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 104KB - Virtual size: 101KB

.reloc
Size: 4KB - Virtual size: 3KB