5d20a2c550b1bf1b1d4cb8f618248b98_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5d20a2c550b1bf1b1d4cb8f618248b98_JaffaCakes118
Size

96KB
MD5

5d20a2c550b1bf1b1d4cb8f618248b98
SHA1

5501864b395586b0e05b2015ee3dc15a3b061172
SHA256

490d7dc9b87c4003b14a25b566ac31796563aa19bc1f6aff6ebab3a9146d4f11
SHA512

2a1a3c21711e9b6916d5c29b92ea450055a3d49bb73154ad06a356bb09d956814970c6dc05fd7a21be8136d7a586cb2f7fddef914b737e829f2551d74052fcb0
SSDEEP

1536:x0ozhchkoH/aZ7m/CvkxHP88ISCdz+jznHMKfNqQ7fjXpIFUTdbp6Hgxxot26b7N:nNN77mq8p8Lt+jzHMKfN377ZIqHOYotg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5d20a2c550b1bf1b1d4cb8f618248b98_JaffaCakes118

Files

5d20a2c550b1bf1b1d4cb8f618248b98_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

3adebd16d59c1dabb9e589d0154efa1c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProfileIntW
WaitForMultipleObjects
LocalFileTimeToFileTime
lstrcmpiW
AddAtomW
ExitThread
CreateNamedPipeW
UnmapViewOfFile
WriteProfileStringA
GetProcessAffinityMask
MoveFileExA
lstrcpyA
VerSetConditionMask
QueryPerformanceFrequency
BindIoCompletionCallback
FlushFileBuffers
GetStringTypeExW
GetStartupInfoW
SetConsoleCtrlHandler
PeekConsoleInputW
EnumResourceNamesW
ReadConsoleInputW
GetNumberFormatA
GetUserDefaultLangID
GetWindowsDirectoryA
WriteConsoleW
SetVolumeMountPointW
SetConsoleMode
GlobalFlags
ConnectNamedPipe
HeapSize
CompareStringW
GetEnvironmentStrings
GetExitCodeThread
GlobalFree
GetFullPathNameA
SetConsoleTitleA
GetTempFileNameW
ReleaseSemaphore
lstrcmpA
SuspendThread
GetComputerNameW
ChangeTimerQueueTimer
ReadFileEx
FindVolumeClose
FindFirstFileA
GetSystemPowerStatus
ExpandEnvironmentStringsW
CancelIo
OpenEventW
HeapCompact
IsBadStringPtrW
SetFileApisToOEM
GetThreadTimes
GetLongPathNameW
SizeofResource
SetConsoleTextAttribute
lstrlenW
RegisterWaitForSingleObjectEx
SetEndOfFile
GetSystemDefaultLangID
SetHandleCount
QueueUserAPC
OpenSemaphoreA
GetCommandLineW
SetLastError
CreateJobObjectW
FindCloseChangeNotification
CreateProcessW
GetTapeParameters
GetLogicalDriveStringsW
DeleteCriticalSection
GetTimeZoneInformation
CopyFileA
GetLogicalDriveStringsA
FindNextVolumeW
SetWaitableTimer
OpenProcess
GetBinaryTypeW
ClearCommError
GetTempFileNameA
IsBadHugeReadPtr
SetTimeZoneInformation
EnumSystemLocalesA
SetComputerNameA
GetFileInformationByHandle
MapViewOfFileEx
GetConsoleCP
WriteFile
CreateProcessA
CreateDirectoryA
CloseHandle
ReadFile
Sleep
GetTickCount
GetComputerNameA
HeapFree
InterlockedIncrement
GetModuleHandleA
GlobalAlloc
GetProcAddress
VirtualProtect
GetModuleFileNameA
CreateFileA
LoadLibraryA
EnterCriticalSection
HeapAlloc
ExpandEnvironmentStringsA
LeaveCriticalSection
GetCurrentProcessId
GetFileSizeEx

user32

EnumDisplaySettingsA
IsWindow
GetProcessWindowStation
IsMenu
GrayStringA
GetLastActivePopup
CharPrevW
CreateWindowExW
SetMessageQueue
SetSysColors
GetMessageTime
GetMenuItemID
GetClassInfoW
GetCursorPos
BringWindowToTop
ShowWindow
AttachThreadInput
LoadMenuW
DestroyIcon
GetMonitorInfoA
InvalidateRect
IntersectRect
UpdateWindow
SetDlgItemInt
SetRectEmpty
GetThreadDesktop
LoadImageA
wsprintfW
DefDlgProcA
wvsprintfW
CreateIconIndirect
CharLowerBuffW
GetMenu
CharToOemA
CheckMenuItem
IsDialogMessageA
GetAncestor
SendDlgItemMessageA
GetMenuDefaultItem
PostThreadMessageA
PeekMessageA
RedrawWindow
GetQueueStatus
MessageBoxIndirectA
DrawStateA
UnhookWindowsHook
LoadCursorA
EndDialog
InsertMenuItemW
ScrollWindowEx
GetActiveWindow
ChildWindowFromPointEx
GetSystemMetrics
GetPropA
DialogBoxParamA
AllowSetForegroundWindow
GetKeyNameTextA
SetDlgItemTextA
PostMessageW
LoadStringW
LoadCursorW
LoadBitmapW
HideCaret
GetDlgItemTextW
DrawFrameControl
SetWindowWord
OpenDesktopA
ShowCaret
SendMessageW
ModifyMenuW
GetMenuStringA
GetClassInfoExW
ScrollWindow
SetCursorPos
SetCaretPos
CharLowerW
FlashWindow
GetNextDlgTabItem
DrawAnimatedRects
GetAsyncKeyState
GetDlgItemInt
CopyAcceleratorTableA
MonitorFromRect
WindowFromDC
GetMessageA
RegisterClassExA
SendMessageA
GetClientRect
UnhookWindowsHookEx
DispatchMessageA
GetWindowLongA
GetClassNameA
SetWindowsHookExA
SetWindowLongA
CreateWindowExA
GetMonitorInfoW

advapi32

RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
LookupAccountNameA
QueryServiceConfigW
DuplicateToken
NotifyChangeEventLog
UnlockServiceDatabase
NotifyBootConfigStatus
ChangeServiceConfigW
RegCreateKeyW
RegOpenKeyW
RegCreateKeyExW
GetTokenInformation
StartServiceA
OpenServiceW
RegReplaceKeyW
RegDeleteValueA
ChangeServiceConfig2W
QueryServiceConfigA
RegOpenKeyA
RegNotifyChangeKeyValue
ControlService

shell32

ShellAboutA
SHCreateShellItem
SHGetSpecialFolderPathW
DragQueryFileA
CommandLineToArgvW
SHGetPathFromIDListA
SHGetFileInfoA
SHGetFolderPathAndSubDirW
SHGetSpecialFolderPathA
SHBrowseForFolderA
ExtractIconExW
ShellAboutW
SHGetDesktopFolder
SHOpenFolderAndSelectItems

gdi32

PtInRegion
CloseFigure
FillRgn
CreateFontIndirectA
CreateBitmapIndirect
CopyEnhMetaFileA
ScaleWindowExtEx
OffsetRgn
GetMetaFileBitsEx
GetTextCharset
GetMetaFileA
PolyPolygon
CreateRectRgnIndirect
CreateCompatibleDC
GetTextExtentPointW
GetTextFaceW
GetPixel
GetCharWidth32W
StartDocA
SetMagicColors
TextOutW
AbortPath
EndDoc
CreateCompatibleBitmap
ResizePalette
GetRegionData
GetBitmapDimensionEx
GetEnhMetaFileA
GetCurrentObject
GetWindowExtEx
RealizePalette
GetViewportOrgEx
EndPage
PlayEnhMetaFile
EnumFontsA
GetNearestPaletteIndex
DeleteMetaFile
DeleteDC
ScaleViewportExtEx
OffsetViewportOrgEx
CreatePenIndirect
SetDCBrushColor
CreateDCW
FillPath
SetBkColor
RoundRect
GetPixelFormat
AnimatePalette

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3adebd16d59c1dabb9e589d0154efa1c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB