40f070ccb4ed3be1d326dd2f6def36fc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

40f070ccb4ed3be1d326dd2f6def36fc_JaffaCakes118
Size

126KB
MD5

40f070ccb4ed3be1d326dd2f6def36fc
SHA1

17fe9d912576cf9246003229f0d9c1d77000b752
SHA256

a642d82eeddd90fd9fab34bcaf568dc76ffaf3759c18aae15e53e4771cd132d2
SHA512

ac3b79233d7996e1b5c0eb34efdb815e4fb996ad2968d97e53a8c947a39257e5ad624db7013af7bfedd60151100d06d69927031a565ce0ad938229c9724f1e88
SSDEEP

3072:P/GYCn9x2obI8t1ZVHR0lNnWVIRdYxSgKK:XGYC9xJIw1ZhOPnt0xSgKK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40f070ccb4ed3be1d326dd2f6def36fc_JaffaCakes118

Files

40f070ccb4ed3be1d326dd2f6def36fc_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2a66da3628682ff1727ae8032548cdaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

ImageList_DragMove
ImageList_Merge
ImageList_LoadImageW
ImageList_Create
InitCommonControls
ImageList_Read
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_EndDrag
ImageList_GetIcon
ImageList_GetImageRect
ImageList_DrawIndirect
ImageList_DragLeave
ImageList_DragEnter
ImageList_Copy
ImageList_GetDragImage
ImageList_GetImageInfo
ImageList_DrawEx
ImageList_Remove
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Merge
ImageList_LoadImage
ImageList_GetImageCount
ImageList_Create
ImageList_DragShowNolock
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_Create
InitCommonControls
ImageList_Replace
ImageList_DrawIndirect
ImageList_DragMove
ImageList_LoadImageW
ImageList_LoadImage
ImageList_Copy
ImageList_Remove
InitCommonControls
ImageList_Copy
ImageList_Draw
ImageList_Replace
ImageList_GetImageRect
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_DrawIndirect
ImageList_Create
ImageList_DrawEx
ImageList_GetIconSize
ImageList_AddIcon
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_DragEnter

user32

DrawIconEx
IsMenu
IsWindow
DialogBoxParamW
DrawTextA
InsertMenuA
DialogBoxParamA
AppendMenuW
DrawIcon
CopyImage
GetDC
AlignRects
DrawIcon
GetWindowTextLengthA
GetDC
DrawTextW
DialogBoxParamW
CopyRect
InsertMenuA
AppendMenuW
LoadCursorA
BlockInput
GetCursor
GetFocus
DrawIconEx
GetMenu
DrawTextA
CopyIcon
IsWindow
CloseWindow

advapi32

RegQueryValueW
RegEnumValueA
RegReplaceKeyA
RegQueryValueExA
RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyW
RegQueryInfoKeyW
RegDeleteValueW
RegLoadKeyA
RegEnumKeyA
RegEnumValueW
RegOpenKeyA
RegQueryValueA
RegCreateKeyExW
RegEnumValueA
RegFlushKey
RegDeleteValueW
RegCreateKeyW
RegDeleteKeyW
RegEnumKeyExA
RegEnumKeyExW
RegOpenKeyExA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegReplaceKeyA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA
RegGetKeySecurity
RegEnumKeyExW
RegOpenKeyExW
RegReplaceKeyW
RegCreateKeyW
RegLoadKeyA
RegEnumValueA
RegOpenKeyW

kernel32

ReadFile
GetLastError
ExitThread
OpenFileMappingA
SetLastError
CopyFileW
WriteFile
CreateProcessA
GetFileSize
DeleteFileW
GetCommandLineA
GetStdHandle
FindFirstFileA
CopyFileExW
GetConsoleMode
GetCPInfo
FindAtomA
CopyFileExA
ReadFile
ExitThread
FindAtomA
CreateThread
OpenFile
GetStdHandle
GetFileSize
Sleep
DeleteFileW
CreateProcessA
ReadConsoleA
GlobalFree
CreateThread
GetLastError
FindAtomA
OpenFileMappingA
GetStdHandle
WriteFile
GetCommandLineA
OpenFile
DeleteFileA
GetFileSize
SetLastError
CopyFileW
CreateDirectoryA
CreateProcessA
GetCPInfo
DeleteFileW
GlobalFree

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rDAta
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 383B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reLOc
Size: 512B - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a66da3628682ff1727ae8032548cdaf

Headers

File Characteristics

Imports

comctl32

user32

advapi32

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

rDAta Size: - Virtual size: 1KB

.code Size: 109KB - Virtual size: 109KB

.idata Size: 6KB - Virtual size: 6KB

.edata Size: 512B - Virtual size: 383B

.reLOc Size: 512B - Virtual size: 132KB

.text
Size: 8KB - Virtual size: 7KB

rDAta
Size: - Virtual size: 1KB

.code
Size: 109KB - Virtual size: 109KB

.idata
Size: 6KB - Virtual size: 6KB

.edata
Size: 512B - Virtual size: 383B

.reLOc
Size: 512B - Virtual size: 132KB