69533c0be53c28f0abfd21b910ed6941_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

69533c0be53c28f0abfd21b910ed6941_JaffaCakes118
Size

92KB
MD5

69533c0be53c28f0abfd21b910ed6941
SHA1

e202556c30c164b8cf2b442f9f089735d936e514
SHA256

d6905417188d5613bdfc573c238d3ffe409392a888f8d6e2a09149868aa98ed9
SHA512

a556108d3f90c606de240d7f302e7fcc1fa1a22c88abc7bb95d0dae67132c469f2385f7e2292b4ca5ab5590321147986eb53d527b98329d85be20d5a00baf3cf
SSDEEP

1536:8lOamE4H1DZ/XCQWxYwINtZcYnn36uERtPqnoOukx6FIgEPAwLH0Su:91DZfCQWxYwIZ36/j+ukx+IgEPAwL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69533c0be53c28f0abfd21b910ed6941_JaffaCakes118

Files

69533c0be53c28f0abfd21b910ed6941_JaffaCakes118
.dll windows:4 windows x86 arch:x86

93cd0e6cbce48c2da6ea9df86a6461e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

comctl32

InitCommonControls

kernel32

AddAtomA
Beep
CloseHandle
CreateSemaphoreA
CreateThread
FindAtomA
FreeLibrary
FreeLibraryAndExitThread
GetAtomNameA
GetLastError
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
LockFile
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseSemaphore
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnlockFile
WaitForSingleObject
WinExec

msvcrt

__dllonexit
__mb_cur_max
_assert
_controlfp
_errno
_filelengthi64
_get_osfhandle
_iob
_isctype
_mkdir
_pctype
_snprintf
_stricmp
abort
calloc
exit
fclose
fflush
fgetc
fgetpos
fgets
fopen
fprintf
fread
free
freopen
fseek
fsetpos
ftell
fwrite
malloc
mbstowcs
memcpy
memmove
memset
rand
realloc
remove
rewind
setvbuf
srand
strcmp
strlen
strtod
tolower
wcslen
wcsncmp

user32

CreateWindowExA
DefWindowProcA
DestroyWindow
DialogBoxParamA
DispatchMessageA
EndDialog
GetClientRect
GetParent
GetWindowLongA
GetWindowTextA
KillTimer
LoadCursorA
MoveWindow
PeekMessageA
RegisterClassExA
SendDlgItemMessageA
SetTimer
SetWindowLongA
SetWindowTextA
ShowWindow
TranslateMessage

wininet

GetUrlCacheEntryInfoA

Exports

Exports

RasDialsA

Sections

.text
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 84KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 71B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93cd0e6cbce48c2da6ea9df86a6461e9

Headers

File Characteristics

Imports

comctl32

kernel32

msvcrt

user32

wininet

Exports

Exports

Sections

.text Size: 75KB - Virtual size: 74KB

.data Size: 2KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.bss Size: - Virtual size: 84KB

.edata Size: 512B - Virtual size: 71B

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 75KB - Virtual size: 74KB

.data
Size: 2KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.bss
Size: - Virtual size: 84KB

.edata
Size: 512B - Virtual size: 71B

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB