5fa8b839d08575ae7cfc028a3c2811c7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5fa8b839d08575ae7cfc028a3c2811c7_JaffaCakes118
Size

163KB
MD5

5fa8b839d08575ae7cfc028a3c2811c7
SHA1

73633d6365fe1afa9f84829415a7df2d00466acd
SHA256

53d5c680e6a45dd5169aa69e15171aafda8b0cfe4595d80fb88ef6fc8b70169c
SHA512

0597296a739e432cb4e0dd4ecd2540fed34fb7bdeeab8696a3b43316ccfc02f9b68544bcb8709de0548a7f9758eaef271cb40ed4876f72374a55a12f18a72bc9
SSDEEP

3072:46KVVUGOi98gin8kKxu0jNAHLLtoxYkopUIp:4LVUGN9Cn0IftoxYbUc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fa8b839d08575ae7cfc028a3c2811c7_JaffaCakes118

Files

5fa8b839d08575ae7cfc028a3c2811c7_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b751f7a8beb930086558f02057bd5617

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

u32base

buf32GetMem
buf32Free
buf32GetInfo
buf32MergeMem
buf32Alloc

u32comm

c32SetDLLErrInfo

u32misc

ord24
ord25
ord41
ord26
ord16
ord21

kernel32

LeaveCriticalSection
GetLastError
SetFilePointer
EnterCriticalSection
VirtualAlloc
HeapAlloc
VirtualFree
HeapCreate
SetThreadPriority
GetThreadPriority
GetCurrentThread
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalLock
CreateFileA
GetFileSize
CloseHandle
_lread
_llseek
_lwrite
SetEndOfFile
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
FlushFileBuffers
SetStdHandle
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
WideCharToMultiByte
HeapDestroy
ExitProcess
HeapFree
TlsAlloc
TlsFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
ReadFile
WriteFile
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
GetACP
GetOEMCP
SetLastError
TlsGetValue
GetModuleFileNameA
GetCPInfo
GetEnvironmentStrings
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStringsW

user32

GetDC
ReleaseDC

gdi32

GetPaletteEntries
GetObjectA
CreatePalette
GetDeviceCaps
DeleteObject

Exports

Exports

AniGifAction
ChunkAction
GifAction
GifCheckHeader
GifGetInfo
GifReadFile

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b751f7a8beb930086558f02057bd5617

Headers

File Characteristics

Imports

u32base

u32comm

u32misc

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 10KB - Virtual size: 15KB

.rsrc Size: 102KB - Virtual size: 101KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 10KB - Virtual size: 15KB

.rsrc
Size: 102KB - Virtual size: 101KB

.reloc
Size: 3KB - Virtual size: 2KB