3db61b6ac541d5f191d67307e34db1e4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3db61b6ac541d5f191d67307e34db1e4_JaffaCakes118
Size

126KB
MD5

3db61b6ac541d5f191d67307e34db1e4
SHA1

232e197c9b8c6ce27e654a73a78ec35f9c80da96
SHA256

6fb87a7c472dd18b31f3e8936a6c23c06c4705008241471c7221ce350e335e2b
SHA512

0b9f12b8913c922a2f297eef5683692986cf374d19ff19d6277bb629c613b302f5bf5d5beef70b97caf1ea5429a85e4d6be351498982f93f633fa3a2cf659317
SSDEEP

3072:P/GYCn9x2obI8t1ZVHR0lNnWVIRdYxSgKk:XGYC9xJIw1ZhOPnt0xSgKk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3db61b6ac541d5f191d67307e34db1e4_JaffaCakes118

Files

3db61b6ac541d5f191d67307e34db1e4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2a66da3628682ff1727ae8032548cdaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

ImageList_DragMove
ImageList_Merge
ImageList_LoadImageW
ImageList_Create
InitCommonControls
ImageList_Read
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_EndDrag
ImageList_GetIcon
ImageList_GetImageRect
ImageList_DrawIndirect
ImageList_DragLeave
ImageList_DragEnter
ImageList_Copy
ImageList_GetDragImage
ImageList_GetImageInfo
ImageList_DrawEx
ImageList_Remove
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Merge
ImageList_LoadImage
ImageList_GetImageCount
ImageList_Create
ImageList_DragShowNolock
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_Create
InitCommonControls
ImageList_Replace
ImageList_DrawIndirect
ImageList_DragMove
ImageList_LoadImageW
ImageList_LoadImage
ImageList_Copy
ImageList_Remove
InitCommonControls
ImageList_Copy
ImageList_Draw
ImageList_Replace
ImageList_GetImageRect
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_Create
ImageList_DrawEx
ImageList_GetIconSize
ImageList_AddIcon
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_DragEnter

user32

DrawIconEx
IsMenu
IsWindow
DialogBoxParamW
DrawTextA
InsertMenuA
DialogBoxParamA
AppendMenuW
DrawIcon
CopyImage
GetDC
AlignRects
DrawIcon
GetWindowTextLengthA
GetDC
DrawTextW
DialogBoxParamW
CopyRect
InsertMenuA
AppendMenuW
LoadCursorA
BlockInput
GetCursor
GetFocus
DrawIconEx
GetMenu
DrawTextA
CopyIcon
IsWindow
CloseWindow

advapi32

RegQueryValueW
RegEnumValueA
RegReplaceKeyA
RegQueryValueExA
RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyW
RegQueryInfoKeyW
RegDeleteValueW
RegLoadKeyA
RegEnumKeyA
RegEnumValueW
RegOpenKeyA
RegQueryValueA
RegCreateKeyExW
RegEnumValueA
RegFlushKey
RegDeleteValueW
RegCreateKeyW
RegDeleteKeyW
RegEnumKeyExA
RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegReplaceKeyA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA
RegGetKeySecurity
RegEnumKeyExW
RegOpenKeyExW
RegReplaceKeyW
RegCreateKeyW
RegLoadKeyA
RegEnumValueA
RegOpenKeyW

kernel32

ReadFile
GetLastError
ExitThread
OpenFileMappingA
SetLastError
CopyFileW
WriteFile
CreateProcessA
GetFileSize
DeleteFileW
GetCommandLineA
GetStdHandle
FindFirstFileA
CopyFileExW
GetConsoleMode
GetCPInfo
FindAtomA
CopyFileExA
ReadFile
ExitThread
FindAtomA
CreateThread
OpenFile
GetStdHandle
GetFileSize
Sleep
DeleteFileW
CreateProcessA
ReadConsoleA
GlobalFree
CreateThread
GetLastError
FindAtomA
OpenFileMappingA
GetStdHandle
WriteFile
GetCommandLineA
OpenFile
DeleteFileA
GetFileSize
SetLastError
CopyFileW
CreateDirectoryA
CreateProcessA
GetCPInfo
DeleteFileW
GlobalFree

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rDAta
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 383B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reLOc
Size: 512B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a66da3628682ff1727ae8032548cdaf

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

rDAta Size: - Virtual size: 1KB

.code Size: 109KB - Virtual size: 109KB

.idata Size: 6KB - Virtual size: 6KB

.edata Size: 512B - Virtual size: 383B

.reLOc Size: 512B - Virtual size: 132KB

.text
Size: 8KB - Virtual size: 7KB

rDAta
Size: - Virtual size: 1KB

.code
Size: 109KB - Virtual size: 109KB

.idata
Size: 6KB - Virtual size: 6KB

.edata
Size: 512B - Virtual size: 383B

.reLOc
Size: 512B - Virtual size: 132KB