3f2d0634dff25ec2afcba7a643c0c8ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3f2d0634dff25ec2afcba7a643c0c8ec_JaffaCakes118
Size

495KB
MD5

3f2d0634dff25ec2afcba7a643c0c8ec
SHA1

5be3e81c76707852e4f22eb804a408225342607b
SHA256

13b0a2f8e519bb18a4a9730a035d8ce77f93d4e7ba99c4dbc0e85b678c012e40
SHA512

135808393de944fc0b9f076bebade2d2841bb507c08af971ee9c8613c1eb70f65e5365a8e5d849eae1b16a6c26e30665b2ea964b0523ee9960f375bf9e5465a7
SSDEEP

6144:Kob/D/g6i7w0uzDhstHgLL4nCnCea99AEBYikjfOmK+Xh3yw2c7lvW0FB/Uoc7gw:KQkw0upsyeU4Be21+Riw2c7EC/H4yls

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f2d0634dff25ec2afcba7a643c0c8ec_JaffaCakes118

Files

3f2d0634dff25ec2afcba7a643c0c8ec_JaffaCakes118
.dll windows:5 windows x86 arch:x86

84e02f572692999c002f2b8297aca410

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetUnhandledExceptionFilter
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

GetCursorPos
MessageBoxA

gdi32

ExtTextOutA

msvcp90

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

msvcr90

_encode_pointer

wininet

InternetOpenUrlA

winmm

sndPlaySoundA

advapi32

RegCloseKey

Sections

_TEXT
Size: - Virtual size: 431B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 241KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.vmp2
Size: 493KB - Virtual size: 492KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84e02f572692999c002f2b8297aca410

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msvcp90

msvcr90

wininet

winmm

advapi32

Sections

_TEXT Size: - Virtual size: 431B

.text Size: - Virtual size: 302KB

.rdata Size: - Virtual size: 78KB

.data Size: - Virtual size: 241KB

.rsrc Size: 1024B - Virtual size: 688B

.vmp0 Size: - Virtual size: 24KB

.vmp1 Size: - Virtual size: 142KB

.vmp2 Size: 493KB - Virtual size: 492KB

.reloc Size: 512B - Virtual size: 152B

_TEXT
Size: - Virtual size: 431B

.text
Size: - Virtual size: 302KB

.rdata
Size: - Virtual size: 78KB

.data
Size: - Virtual size: 241KB

.rsrc
Size: 1024B - Virtual size: 688B

.vmp0
Size: - Virtual size: 24KB

.vmp1
Size: - Virtual size: 142KB

.vmp2
Size: 493KB - Virtual size: 492KB

.reloc
Size: 512B - Virtual size: 152B