4850aadc8007fa3001f84fc21ed983f4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4850aadc8007fa3001f84fc21ed983f4_JaffaCakes118
Size

164KB
MD5

4850aadc8007fa3001f84fc21ed983f4
SHA1

cfbb5b5395032d425a259bc1f2df0141e904a965
SHA256

3f63fdd487dc6bad6866cf1643cef76722d9b29fe151a96e750f7dc8c5604271
SHA512

ef26f31c806c99e4a595d6f6bfca38d4d42136be6c0ff2de1d4be34da952a71a7ebbcdc54a9d4fbdb5b0995fd997ebf9f2d717c67c73d8b363defa54fe9ebc1e
SSDEEP

3072:BDxTUM3m0+t3X0B/8osXiJIan+2QNeN6dsdQ8OymHXC7HSLcUs76Mc5:5mZZX058oCRZdsdQ8l06HgM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4850aadc8007fa3001f84fc21ed983f4_JaffaCakes118

Files

4850aadc8007fa3001f84fc21ed983f4_JaffaCakes118
.dll windows:5 windows x86 arch:x86

ae919ff5fe46c23cd629ff6b9247dc1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetComputerNameA
GetLastError
InitializeCriticalSection
OutputDebugStringA
CreateThread
GetFullPathNameW
VerSetConditionMask
GetStartupInfoW
DebugActiveProcess
LeaveCriticalSection
LoadLibraryW
VirtualAlloc
TerminateProcess
GetModuleFileNameA
GlobalAlloc
GetModuleHandleA
SetHandleCount
DeactivateActCtx
GetProcAddress
TlsFree
GetStartupInfoA
GetSystemTimeAsFileTime
WriteConsoleW
EnumLanguageGroupLocalesA
HeapFree
ExitProcess
lstrcpyA
GetOEMCP
GetEnvironmentStrings
GetWindowsDirectoryA
ExpandEnvironmentStringsW
VirtualProtect
VirtualFree
HeapCreate
GlobalLock
ExitThread
VerifyVersionInfoW
IsDBCSLeadByte
GetLocalTime
FindResourceW

msvcrt

fprintf
swscanf
_c_exit
iswprint
wcscmp
calloc
_vsnwprintf
_cexit
memcpy
__CxxFrameHandler
isalpha
_CxxThrowException
fflush
realloc
time
wcscat
_adjust_fdiv
_acmdln
wcslen
malloc
memset
_wcsicmp
_onexit
wcscpy
wcsncpy
wcsstr
_wtol
srand
sprintf
free
exit
__p__commode
printf
wcsxfrm
__getmainargs
_XcptFilter

user32

GetWindowPlacement
EqualRect
EnableMenuItem
GetSysColor
GetSystemMetrics
UnregisterClassW
DialogBoxParamA
PostMessageA
SetWindowTextW
InvalidateRect
GetMenuItemCount
IsIconic
GetForegroundWindow
AppendMenuW
GetDlgItem
LoadCursorA
KillTimer
DrawIconEx
SetScrollPos
GetUserObjectInformationW
PeekMessageW
ExitWindowsEx
GetThreadDesktop
CreateWindowExA
PostThreadMessageW
GetKeyState
SetRectEmpty
GetWindowTextW

gdi32

GetTextExtentPointW
SetStretchBltMode
GetObjectA
TextOutW
CreatePen
ExtTextOutW
SaveDC
BitBlt
CreateCompatibleBitmap
SetPixel
GetDeviceCaps
GetStockObject
CreateCompatibleDC

opengl32

glGetMaterialiv
glPixelMapusv
glTexCoord1dv
glColor4bv
glMultMatrixf
glNormal3iv
glFrontFace
glTexCoord2dv
glTexCoord3dv
glRasterPos3fv
glRasterPos2d
glClearAccum

Exports

Exports

OuvxAvciOw
Nedrgf
BucWhkyOlqde
MoiIlygzffQqdtucl
UcFqmxsccYqlgplAmbtfht
LjOxojQccgdOkncms

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 115B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae919ff5fe46c23cd629ff6b9247dc1c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 64KB - Virtual size: 64KB

.edata Size: 512B - Virtual size: 115B

.crt Size: 512B - Virtual size: 72B

.rsrc Size: 79KB - Virtual size: 79KB

.reloc Size: 512B - Virtual size: 130B

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 64KB - Virtual size: 64KB

.edata
Size: 512B - Virtual size: 115B

.crt
Size: 512B - Virtual size: 72B

.rsrc
Size: 79KB - Virtual size: 79KB

.reloc
Size: 512B - Virtual size: 130B