5f96c241c0b9ef61b5b05b6b6fa0af04_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f96c241c0b9ef61b5b05b6b6fa0af04_JaffaCakes118
Size

82KB
MD5

5f96c241c0b9ef61b5b05b6b6fa0af04
SHA1

008f0b51ed80c82ce4aefee2a3c48c5eddc9e41d
SHA256

e3408a1ba47ea72496e20445de542dde9f95b31605431ec778f53817cc49a51b
SHA512

d0ee222a4f5e2603823c5b42ad62c5f725e7b94aa146c032e7eb65016203af336467beae6c0449a0d9b884c48c8292d62b0f410b3a3ae2c82f1314359849d82e
SSDEEP

1536:HFdRrdbd2QCQCWv9GtyHpF8ca2M+EGzG+BhHk4StYMtd4K+pmEs6D+G:HHtdbdfCqHj8ca2M+EreHk47PaEaG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f96c241c0b9ef61b5b05b6b6fa0af04_JaffaCakes118

Files

5f96c241c0b9ef61b5b05b6b6fa0af04_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9ef48b6bde8235219c39970033b38d3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
SetConsoleMode
WriteConsoleW
ReadConsoleW
HeapReAlloc
HeapFree
HeapSize
HeapAlloc
GetProcessHeap
HeapValidate
CompareStringA
SetLastError
lstrlenW
GetFileType
GetStdHandle
GetConsoleMode
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VerSetConditionMask
GetComputerNameExW
FormatMessageW
LocalFree
GetConsoleOutputCP
WideCharToMultiByte
GetThreadLocale
GetLastError
FreeLibrary
GetProcAddress
GetModuleHandleW
GetCommandLineW
GetStartupInfoW
GetSystemPowerStatus
LoadLibraryW
Sleep
InterlockedExchange
GetVersionExW
InterlockedCompareExchange
TerminateProcess
GetComputerNameExA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameW
GetComputerNameW
CreateFileW
WriteFile
CloseHandle
CreateMailslotW
ReadFile
VirtualProtect
VirtualFree
GetCommandLineA
VerifyVersionInfoW
VirtualAlloc

user32

CharNextW
BeginPaint
CharUpperW
LoadStringW
SetTimer
SetLayeredWindowAttributes
SetWindowPos
InvalidateRect
PostMessageW
EndPaint
CreateWindowExW
RegisterClassW
DestroyWindow
LoadImageW
FillRect
SetRect
ShowWindow
DefWindowProcW
ValidateRect
SystemParametersInfoW
SetCursor
GetCursorPos
PostQuitMessage
IsWindow
SendMessageW
PeekMessageW
GetForegroundWindow
DispatchMessageW
TranslateMessage
GetMessageW
SetForegroundWindow
FindWindowW
ReleaseDC
GetDC
GetSystemMetrics
GetClientRect
LoadIconW
DialogBoxParamW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

gdi32

DeleteDC
GetClipBox
CreateCompatibleDC
GetStockObject
BitBlt
SelectObject
GetObjectW

ole32

CoCreateInstance
CLSIDFromString

msvcr71

_lock
_onexit
exit
_initterm
time
srand
rand
wcstok
__iob_func
fprintf
fflush
wcstol
wcstoul
_fileno
_errno
_get_osfhandle
_memicmp
_vsnwprintf
_iob
memset
_XcptFilter
_amsg_exit
_except_handler3
_unlock
_adjust_fdiv
malloc
_callnewh
_CxxThrowException
free
_ultoa
memcpy
_wcsicmp
_vsnprintf
__CppXcptFilter
__dllonexit

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ef48b6bde8235219c39970033b38d3b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 2KB - Virtual size: 36KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 2KB - Virtual size: 36KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 3KB - Virtual size: 2KB