4ccbb2198cb378e56f85a1d2a258a143_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4ccbb2198cb378e56f85a1d2a258a143_JaffaCakes118
Size

173KB
MD5

4ccbb2198cb378e56f85a1d2a258a143
SHA1

f4da42a0cc7050e4757d0a5602758db87c3e5030
SHA256

e96e289cc9ad78a580ea95b1f52db046e0889380a7db99c1e17207a458890511
SHA512

1837f657ac62200a2ddfd4da109fbace2ba6dfdd46d8dad199c4f320ad2a3d6adf2c3dfb9206692290188ef5b9f6f561743772ff49a9fff0d9b7619addbc98e7
SSDEEP

3072:Tn7qRClnk9BWZyOnswho65MeNZ7YN38+YAuf4bbYlUEQ2V3xSWIzjlwawPu2jFEV:T72Cle0ZyOsEo65Mi7u8+wQbUlUIcKWv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ccbb2198cb378e56f85a1d2a258a143_JaffaCakes118

Files

4ccbb2198cb378e56f85a1d2a258a143_JaffaCakes118
.dll windows:4 windows x86 arch:x86

594d921d1b2a55adba0b877bb7b8f3b6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

OffsetRect
EndDialog
CharNextW
GetDC
UnhookWindowsHookEx
DefMDIChildProcA
GetFocus
DeleteMenu
GetMenu
CreateWindowExA
ShowOwnedPopups
SetWindowPlacement
UpdateWindow
RemovePropA
SetCursor
SetScrollPos
GetWindowRect
GetSystemMenu
IsDialogMessageW
PostMessageA
GetCursorPos
IsCharLowerA
CharLowerA
GetParent
ShowWindow
CharNextA
DestroyCursor
DefWindowProcA
DrawTextA
LoadCursorA
EnumChildWindows
BeginPaint
DestroyWindow
SetClipboardData
PostQuitMessage
RegisterWindowMessageA
GetWindowTextA
GetClassNameA
wsprintfA
MapWindowPoints
ShowScrollBar
SetFocus
ReleaseCapture
GetClassLongA
GetClientRect
GetMenuStringA
RemoveMenu
GetWindowTextLengthA
SetWindowLongW
WindowFromPoint
EnableWindow
KillTimer
CharUpperBuffA
IsChild
GetClassInfoA
InsertMenuItemA
GetWindowDC
IsCharUpperA
GetScrollPos
CallWindowProcA
GetSubMenu
DestroyIcon
MessageBeep
TranslateMDISysAccel

kernel32

GetCurrentProcess
LocalReAlloc
VirtualAllocEx
LocalFree
GetCurrentThread
LoadLibraryA
GetCommandLineW

Exports

Exports

_BtSV9XWk
Wb7nKqE@20
_J2u7KNO_ws07a@20
l0PId@24
K1oSl@8
4VYapojsQtLs2@4
AVcZvJ1SY1

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.reloc
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

594d921d1b2a55adba0b877bb7b8f3b6

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 150KB - Virtual size: 329KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 150KB - Virtual size: 329KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 2KB