4c65a07b43998b105f26b67bb480acb6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4c65a07b43998b105f26b67bb480acb6_JaffaCakes118
Size

51KB
MD5

4c65a07b43998b105f26b67bb480acb6
SHA1

7c2a0026c2a911093c8561ff1e9b74cb33951ac1
SHA256

d105a1ec06f8299ac49ce665ec62afeb3436003dc3552d41a3063b635af7f289
SHA512

b1f942b326045b8dd68bf4a12258ddab781bc864d3e6d7b76b5c94a80250d18d894ff6e511971224b5da4c6acbef18c4835dc142ac3a8b713983f12cee58e336
SSDEEP

768:8uyH5nLAdAC3gygt9LEpk/G8AnMTOLkdxBA7stg6ZT60D6iAiTEwE57hTy/tsu8:8ZZLIAC9gwpkO8qLwxPZ9AmEBy/tsu8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c65a07b43998b105f26b67bb480acb6_JaffaCakes118

Files

4c65a07b43998b105f26b67bb480acb6_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCanonicalizeA

kernel32

CreateHardLinkW
GetFileTime
Beep
CopyFileW
CopyFileExW
CopyFileExA
CopyFileA
ConvertThreadToFiber
ConvertDefaultLocale
ContinueDebugEvent
ConnectNamedPipe
CompareStringW
CompareStringA
CompareFileTime
CommConfigDialogW
CreateMailslotW
CreateMailslotA
CreateJobObjectW
CreateJobObjectA
CreateIoCompletionPort
CreateHardLinkA
CreateFileW
CreateFileMappingW
CreateFileMappingA
CreateFileA
CreateFiberEx
CreateFiber
CreateEventW
CreateEventA
CreateDirectoryW
CreateDirectoryExW
CreateDirectoryExA
CreateDirectoryA
CreateConsoleScreenBuffer
HeapAlloc
GetProcessHeap
HeapFree

user32

CharPrevA
ChildWindowFromPointEx
ChildWindowFromPoint
CheckRadioButton
ChangeClipboardChain
ChangeDisplaySettingsA
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
ChangeDisplaySettingsW
ChangeMenuA
ChangeMenuW
CharLowerA
CharLowerBuffA
CharLowerBuffW
CharLowerW
CharNextExA
CharNextW
CharNextA
CharPrevExA
CharPrevW
CharToOemA
CharToOemBuffA
CharToOemBuffW
CharToOemW
CharUpperA
CharUpperBuffA
CharUpperBuffW
CharUpperW
CheckDlgButton
CheckMenuItem
CheckMenuRadioItem

msvcrt

memset

winmm

mmioInstallIOProcA

setupapi

SetupDiEnumDeviceInterfaces
CM_Open_Class_KeyA
CM_Register_Device_InterfaceW
CM_Register_Device_Interface_ExA
CM_Register_Device_Interface_ExW
CM_Remove_SubTree
CM_Remove_SubTree_Ex
CM_Request_Device_EjectA
CM_Request_Device_EjectW
CM_Request_Device_Eject_ExA
CM_Request_Device_Eject_ExW
CM_Request_Eject_PC
CM_Request_Eject_PC_Ex
CM_Set_HW_Prof_Ex
CM_Set_HW_Prof_FlagsA
CM_Set_HW_Prof_FlagsW
CM_Set_HW_Prof_Flags_ExA
CM_Set_HW_Prof_Flags_ExW
SetupDiClassGuidsFromNameA
SetupDiClassGuidsFromNameExA
SetupDiEnumDriverInfoA
SetupDiClassGuidsFromNameExW
SetupDiClassGuidsFromNameW
SetupDiClassNameFromGuidA
SetupDiClassNameFromGuidExA
SetupDiClassNameFromGuidExW
SetupDiClassNameFromGuidW
SetupDiCreateDevRegKeyA
SetupDiCreateDevRegKeyW
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoListExA
SetupDiCreateDeviceInfoListExW
SetupDiCreateDeviceInfoW
SetupDiCreateDeviceInterfaceA
SetupDiDestroyDriverInfoList
SetupDiDrawMiniIcon
SetupDiGetClassDescriptionA
SetupDiGetClassBitmapIndex
SetupDiEnumDriverInfoW
SetupDiEnumDeviceInfo

Exports

Exports

dpsnmtz

Sections

.code
Size: 43KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

msvcrt

winmm

setupapi

Exports

Exports

Sections

.code Size: 43KB - Virtual size: 133KB

.rdata Size: 4KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 1B

.reloc Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 792B

.reloc Size: 1024B - Virtual size: 828B

.code
Size: 43KB - Virtual size: 133KB

.rdata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 1B

.reloc
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 792B

.reloc
Size: 1024B - Virtual size: 828B