5c65f244f2271a8ad4b0ed833f32d58c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5c65f244f2271a8ad4b0ed833f32d58c_JaffaCakes118
Size

57KB
MD5

5c65f244f2271a8ad4b0ed833f32d58c
SHA1

42e85cf0b03bd7c240abeb55af0ef2354823aa03
SHA256

dc16bf6affd5b0eedacc114b803e1a8533ea167fbbede8760a29baf60e1c40f0
SHA512

29d6b8bd2ff9f8bbb7f4bcb8729fd333b4a793163c2c212cba46ce39f0728573f2995e2f05a4fe83914f51ac4bf2c11674d74f5758adf1a3983b9a2da2ca25ec
SSDEEP

1536:TxvwT/067MG4nyZ+w8o0NDmQ+i9Ck8cmFNEs/7oARo:TZyjQp1doSabcAFNEs/7o2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c65f244f2271a8ad4b0ed833f32d58c_JaffaCakes118

Files

5c65f244f2271a8ad4b0ed833f32d58c_JaffaCakes118
.dll windows:5 windows x86 arch:x86

2a9a8d42c3b952fa15036a90a1ac9fb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetThreadDesktop
IsWindowVisible
ClientToScreen
GetScrollRange
GetDC
SetWindowPos
GetKeyState
GetSysColor
DrawMenuBar
SetForegroundWindow
MonitorFromRect
DrawTextA
IsChild
GetQueueStatus

kernel32

LockFile
GetModuleHandleA
TerminateThread
ReadFile
GetStartupInfoA
IsDBCSLeadByteEx
VirtualQueryEx
MapViewOfFile
GetProcAddress
IsProcessorFeaturePresent
WaitForMultipleObjects
GetFileSize
UnmapViewOfFile
MultiByteToWideChar
FileTimeToSystemTime
ReleaseMutex
CreateFileMappingA
GetFileTime
WaitForSingleObject
MulDiv

ole32

OleCreateLinkFromData
StgCreateDocfileOnILockBytes
WriteClassStm
OleIsCurrentClipboard
CoInitialize

aclerobj

SdbGrabMatchingInfoEx
CtfAImmIsIME
SdbFindFirstTag
Options_RunDLLA
SdbOpenApphelpDetailsDatabaseSP
SdbGetDatabaseID
ExtractAssociatedIconExA
RealShellExecuteA
CtfAImmDeactivate
CDefFolderMenu_Create
SdbFindNextTag
ImmIMPGetIMEA
PathIsExe
CtfImmLeaveCoInitCountSkipMode
CtfImmCoUninitialize
ImmReleaseContext
ImmLockIMC
ImmLoadIME

gdi32

GetSystemPaletteEntries
GetCharWidthA
DeleteEnhMetaFile
CreateCompatibleBitmap
CreateDIBPatternBrush
GetBitmapBits
SetViewportExtEx
DeleteMetaFile
SetBitmapBits
GetStockObject
Pie

advapi32

SetSecurityDescriptorDacl
SetSecurityDescriptorGroup

msvcrt

_onexit
_wtoi

Exports

Exports

CreateProcessNotify
compgers

Sections

.text
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a9a8d42c3b952fa15036a90a1ac9fb0

Headers

File Characteristics

Imports

user32

kernel32

ole32

aclerobj

gdi32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 38KB - Virtual size: 40KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 13KB - Virtual size: 16KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 38KB - Virtual size: 40KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 13KB - Virtual size: 16KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB