5e8fa15f44bb547022c276883fcb33bb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5e8fa15f44bb547022c276883fcb33bb_JaffaCakes118
Size

80KB
MD5

5e8fa15f44bb547022c276883fcb33bb
SHA1

90176c97cb23f7e4c87bfb5e108f93444eed8d72
SHA256

ab9c57a13b227b1e955190133ce0d064e4a365681f17994909732d3f9274c29d
SHA512

cb69488be3b61f50a1d0434653516e5f8d195106e01f6420d823e78536689e2def40db03626c72a250049f0b886385ff5e9749afaf22aedc9b714c1fa0c1dcbd
SSDEEP

1536:ARtwk2VuNOWCDFdLBDVyU5rZGmuT+ZrRfwc+EOpiysJNLwoUO:ARKkSxTFdVDVTAvTWfwc3ycNLwo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e8fa15f44bb547022c276883fcb33bb_JaffaCakes118

Files

5e8fa15f44bb547022c276883fcb33bb_JaffaCakes118
.dll windows:4 windows x86 arch:x86

87f1ad44e4f6d9a3bfee52ee754e6e8a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RtlUnwind
FreeLibrary
GetCommandLineA
InterlockedExchange
MapViewOfFile
MapViewOfFile
SystemTimeToFileTime
GetTimeFormatW
CreateFileW
VirtualAlloc
GetVersionExA
GetConsoleOutputCP
CreateDirectoryA
GetCurrentProcessId
ExitProcess
SetFilePointer
lstrcpynW
LoadLibraryA
HeapFree
GetLastError
GetProcAddress
DeviceIoControl
GetModuleHandleW
GetModuleHandleA
SetStdHandle
GetCurrentThreadId
Sleep
VirtualAlloc
CreateProcessA
GetCurrentThread
GlobalUnlock
GetTempFileNameW
GetSystemTime
DosDateTimeToFileTime
LoadLibraryA
ReadFile
GetVolumeInformationW
GetFileInformationByHandle

msvcrt

_snwprintf
strchr
memmove
_wtoi
wcstol
ispunct
wcscpy
_wcsicmp
_except_handler3
fflush
memcpy
strncpy
_onexit
toupper
_initterm
__CxxFrameHandler
_wtol
_XcptFilter
_vsnprintf
_exit
__getmainargs
fprintf
__wgetmainargs
malloc

user32

DestroyWindow
EnableMenuItem
CopyRect
TranslateAcceleratorW
IsWindow
SetScrollPos
ShowWindow
GetProcessWindowStation
SetForegroundWindow
EnumThreadWindows
ReleaseCapture
DefDlgProcW
SetWindowsHookExW
GetActiveWindow
SetFocus
GetFocus
DrawTextW
RedrawWindow
SetTimer
FillRect
LoadStringW
GetAsyncKeyState
CheckMenuItem
CheckDlgButton
BeginPaint
GetCapture
CharUpperW
DefWindowProcW

gdi32

TextOutW
ExtTextOutW
TranslateCharsetInfo
RealizePalette
RestoreDC
SelectPalette
GetTextExtentPoint32W
SetWindowExtEx
GetTextExtentPointW
SetBkMode
SetBkColor
CreatePalette
SaveDC
StretchBlt
GetObjectW
PatBlt

opengl32

glClearDepth

Exports

Exports

PbYriyhJui
OwnyMqaouXrhbkOam

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lsd0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lsd1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87f1ad44e4f6d9a3bfee52ee754e6e8a

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 88B

.lsd0 Size: 1KB - Virtual size: 1KB

.lsd1 Size: 1KB - Virtual size: 1KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 512B - Virtual size: 48B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 88B

.lsd0
Size: 1KB - Virtual size: 1KB

.lsd1
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 512B - Virtual size: 48B