45fe0da612035a360367311cd657a2a0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

45fe0da612035a360367311cd657a2a0_JaffaCakes118
Size

381KB
MD5

45fe0da612035a360367311cd657a2a0
SHA1

4b1117307023221cdb4259d0a1cf5821fc29c2b9
SHA256

1fc7812997d1b44de71ff6fdd51bac710f4363a2b40e77546239ec7cdc532010
SHA512

759f3b0dd8a5b251b0dd3dc85ee130e281297d986eebe395d91904794664434d7713d637685750b1e54b3c48a064e261af228eb1ee5192f9373f80dcca3b9807
SSDEEP

6144:Q36foXJM01/Gfz3dUDN3i3Oy+1K5cO4UWsJtVybrF8M3noL40oZ87zw3HQNJXKd6:y6iCrdk4kJE4H69R5DoZt2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45fe0da612035a360367311cd657a2a0_JaffaCakes118

Files

45fe0da612035a360367311cd657a2a0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

741ab48e63941eef19b2a6fea8068146

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

oleaut32

VariantInit
VarUI2FromUI4
VarI4FromI1
VarCyFromI2
VarBstrFromCy
SysAllocString

kernel32

WriteFile
DebugBreak
DeleteCriticalSection
DeleteTimerQueueTimer
ExitProcess
FlushFileBuffers
FormatMessageA
FormatMessageW
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetExitCodeThread
GetFileSize
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalAlloc
GlobalFree
HeapAlloc
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
WideCharToMultiByte
HeapWalk
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LocalReAlloc
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReadFile
RtlUnwind
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualProtect
WaitForSingleObject
HeapUnlock

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
DeregisterEventSource

ole32

CoInitializeEx
CoTaskMemFree
CLSIDFromString

Exports

Exports

D3D10ResourceSetMapFlags
DVDPRVRFixateVideoSessionNoHCB
GetDevicePropertyCount
GetImageFormatAttribute
GetTextureReference

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

741ab48e63941eef19b2a6fea8068146

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

kernel32

advapi32

ole32

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 184KB - Virtual size: 183KB

.data Size: 1KB - Virtual size: 271KB

.rsrc Size: 155KB - Virtual size: 155KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 184KB - Virtual size: 183KB

.data
Size: 1KB - Virtual size: 271KB

.rsrc
Size: 155KB - Virtual size: 155KB

.reloc
Size: 2KB - Virtual size: 1KB