4c708728a6e2a2840a0bb86a218dc2f4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4c708728a6e2a2840a0bb86a218dc2f4_JaffaCakes118
Size

52KB
MD5

4c708728a6e2a2840a0bb86a218dc2f4
SHA1

98d0426df148319bfcc6c8028864fef9251bd540
SHA256

59c9399f2aeb8e73fc6c0f463dc2a968b30a5ff7099caf037a9ef50035bbdb5a
SHA512

e253b1d53cdc70275cc4477115edbce4cef7bb4339afeed6b04ebf047c610c810ece68815805ba071190f79e7f5923e34dccd5facd3c0acabe2396ab5148ea28
SSDEEP

1536:bYWP7HA0eFQw3qtN8tGqLssrgEBy/tsuA:LHA0peqtN8w4rgEBx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4c708728a6e2a2840a0bb86a218dc2f4_JaffaCakes118

Files

4c708728a6e2a2840a0bb86a218dc2f4_JaffaCakes118
.dll windows:4 windows x86 arch:x86

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

UrlCanonicalizeA

kernel32

CreateHardLinkW
GetFileTime
Beep
CopyFileW
CopyFileExW
CopyFileExA
CopyFileA
ConvertThreadToFiber
ConvertDefaultLocale
ContinueDebugEvent
ConnectNamedPipe
CompareStringW
CompareStringA
CompareFileTime
CommConfigDialogW
CreateMailslotW
CreateMailslotA
CreateJobObjectW
CreateJobObjectA
CreateIoCompletionPort
CreateHardLinkA
CreateFileW
CreateFileMappingW
CreateFileMappingA
CreateFileA
CreateFiberEx
CreateFiber
CreateEventW
CreateEventA
CreateDirectoryW
CreateDirectoryExW
CreateDirectoryExA
CreateDirectoryA
CreateConsoleScreenBuffer
HeapAlloc
GetProcessHeap
HeapFree

user32

CharPrevA
ChildWindowFromPointEx
ChildWindowFromPoint
CheckRadioButton
ChangeClipboardChain
ChangeDisplaySettingsA
ChangeDisplaySettingsExA
ChangeDisplaySettingsExW
ChangeDisplaySettingsW
ChangeMenuA
ChangeMenuW
CharLowerA
CharLowerBuffA
CharLowerBuffW
CharLowerW
CharNextExA
CharNextW
CharNextA
CharPrevExA
CharPrevW
CharToOemA
CharToOemBuffA
CharToOemBuffW
CharToOemW
CharUpperA
CharUpperBuffA
CharUpperBuffW
CharUpperW
CheckDlgButton
CheckMenuItem
CheckMenuRadioItem

msvcrt

memset

winmm

mmioInstallIOProcA

setupapi

SetupDiEnumDeviceInterfaces
CM_Open_Class_KeyA
CM_Register_Device_InterfaceW
CM_Register_Device_Interface_ExA
CM_Register_Device_Interface_ExW
CM_Remove_SubTree
CM_Remove_SubTree_Ex
CM_Request_Device_EjectA
CM_Request_Device_EjectW
CM_Request_Device_Eject_ExA
CM_Request_Device_Eject_ExW
CM_Request_Eject_PC
CM_Request_Eject_PC_Ex
CM_Set_HW_Prof_Ex
CM_Set_HW_Prof_FlagsA
CM_Set_HW_Prof_FlagsW
CM_Set_HW_Prof_Flags_ExA
CM_Set_HW_Prof_Flags_ExW
SetupDiClassGuidsFromNameA
SetupDiClassGuidsFromNameExA
SetupDiEnumDriverInfoA
SetupDiClassGuidsFromNameExW
SetupDiClassGuidsFromNameW
SetupDiClassNameFromGuidA
SetupDiClassNameFromGuidExA
SetupDiClassNameFromGuidExW
SetupDiClassNameFromGuidW
SetupDiCreateDevRegKeyA
SetupDiCreateDevRegKeyW
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiCreateDeviceInfoListExA
SetupDiCreateDeviceInfoListExW
SetupDiCreateDeviceInfoW
SetupDiCreateDeviceInterfaceA
SetupDiDestroyDriverInfoList
SetupDiDrawMiniIcon
SetupDiGetClassDescriptionA
SetupDiGetClassBitmapIndex
SetupDiEnumDriverInfoW
SetupDiEnumDeviceInfo

Exports

Exports

rurlji

Sections

.code
Size: 44KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1B

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7522083e52f7bec4ed9f92eb435a7d94

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

msvcrt

winmm

setupapi

Exports

Exports

Sections

.code Size: 44KB - Virtual size: 134KB

.rdata Size: 4KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 1B

.rdata Size: 512B - Virtual size: 1B

.rsrc Size: 1024B - Virtual size: 776B

.reloc Size: 1024B - Virtual size: 828B

.code
Size: 44KB - Virtual size: 134KB

.rdata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 1B

.rdata
Size: 512B - Virtual size: 1B

.rsrc
Size: 1024B - Virtual size: 776B

.reloc
Size: 1024B - Virtual size: 828B