6059e970c70c3ea63b1cb58c6b62e6b7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6059e970c70c3ea63b1cb58c6b62e6b7_JaffaCakes118
Size

388KB
MD5

6059e970c70c3ea63b1cb58c6b62e6b7
SHA1

085daeeb1d43a9b8f001f6935077e8bdcdf2f8da
SHA256

474c5144a817a5ca37ae7c505bdc707ea50aad9edf86977f03b467f52104a4fe
SHA512

3586f07f26dafb6277dfca2cd5bd4a7a4161e2b5d2e307dca1cb261cbc6807672bb974caa63e664b69d8ff7914cf216ca920d30b8bd4578d45ab023e525270c8
SSDEEP

6144:uVSNjWGQzaroWvXrdzADPVpmn6b0e8dlbfcqNhRbgM4t3P:ZNiGroobRA5pmn6gnLzvs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6059e970c70c3ea63b1cb58c6b62e6b7_JaffaCakes118

Files

6059e970c70c3ea63b1cb58c6b62e6b7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

a4791f4a3731b6d78c3c1470d568abb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHRegDuplicateHKey

kernel32

FoldStringW
LocalLock
CompareStringW
LocalUnlock
lstrlenW
LocalAlloc
LocalFree
GetLocaleInfoW
GlobalFree
GetStartupInfoA
LoadLibraryA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
CloseHandle
CreateFileMappingW
GetFileInformationByHandle
GlobalUnlock
GlobalLock
GetTimeFormatW
GetDateFormatW
GetUserDefaultLCID
GetLocalTime
QueryPerformanceCounter
GetTickCount
HeapAlloc
GetProcessHeap
HeapFree
InterlockedDecrement
InterlockedExchangeAdd
lstrcpyW
ReadFile
CreateFileW
lstrcmpiW
GetCurrentProcessId
GetProcAddress
GetCommandLineW
lstrcatW
FindClose
FindFirstFileW
GetFileAttributesW
lstrcmpW
MulDiv
lstrcpynW
LocalSize
GetLastError
WriteFile
SetLastError
WideCharToMultiByte
LocalReAlloc
FormatMessageW
GetUserDefaultUILanguage
GetCurrentProcess
SetEndOfFile
DeleteFileW
GetACP
UnmapViewOfFile
MultiByteToWideChar
MapViewOfFile

user32

ChildWindowFromPoint
GetDlgCtrlID
WinHelpW
InvalidateRect
MoveWindow
GetSystemMetrics
GetWindowTextW
CreateDialogParamW
DrawTextExW
EnableWindow
PeekMessageW
CharLowerW
SetScrollPos
UpdateWindow
RegisterWindowMessageW
PostQuitMessage
SetWindowTextW
LoadIconW
GetFocus
GetDesktopWindow
CreateWindowExW
SetWindowPlacement
LoadCursorW
LoadImageW
RegisterClassExW
GetSystemMenu
LoadAcceleratorsW
LoadStringW
CharUpperW
GetWindowPlacement
IsIconic
GetForegroundWindow
ShowWindow
MessageBeep
DestroyWindow
DefWindowProcW
GetKeyboardLayout
SetActiveWindow
DialogBoxParamW
GetDC
ReleaseDC
SetCursor
GetClientRect
ScreenToClient
GetCursorPos
SendDlgItemMessageW
SendMessageW
CharNextW
CheckMenuItem
SetWinEventHook
GetMessageW
CloseClipboard
IsClipboardFormatAvailable
GetMenuState
EnableMenuItem
GetSubMenu
GetMenu
MessageBoxW
SetWindowLongW
GetWindowLongW
GetDlgItem
SetFocus
SetDlgItemTextW
wsprintfW
GetDlgItemTextW
EndDialog
GetParent
UnhookWinEvent
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsDialogMessageW
PostMessageW
OpenClipboard

advapi32

RegOpenKeyExA
RegQueryValueExA
IsTextUnicode
RegCreateKeyW
RegSetValueExW

winmm

mmioInstallIOProcA

gdi32

SelectObject
SetMapMode
SetViewportExtEx
SetWindowExtEx
LPtoDP
SetBkMode
GetTextMetricsW
DeleteObject
CreateFontIndirectW
GetDeviceCaps
GetObjectW
GetStockObject
EnumFontsW
StartDocW
TextOutW
GetTextFaceW
SetAbortProc
CreateDCW
GetTextExtentPoint32W
StartPage
DeleteDC
EndDoc
AbortDoc
EndPage

Sections

.code
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 336KB - Virtual size: 362KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 792B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4791f4a3731b6d78c3c1470d568abb7

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

advapi32

winmm

gdi32

Sections

.code Size: 32KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 336KB - Virtual size: 362KB

.rsrc Size: 4KB - Virtual size: 792B

.reloc Size: 4KB - Virtual size: 1KB

.code
Size: 32KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 336KB - Virtual size: 362KB

.rsrc
Size: 4KB - Virtual size: 792B

.reloc
Size: 4KB - Virtual size: 1KB