66a3da2c6ee8bf80c1e3e2002d8c3c78_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

66a3da2c6ee8bf80c1e3e2002d8c3c78_JaffaCakes118
Size

84KB
MD5

66a3da2c6ee8bf80c1e3e2002d8c3c78
SHA1

9c8efd4a09ea1150f3fce1cb31c0b5611c2e1b11
SHA256

15e57dc64725855fecde56e56d53d9b2eee014b8651ac3fd2c68f649860cbfe7
SHA512

8eb3b491a86de7a600f2241b161a1057a1c119916b5d84772a2bb9181204be5aa9debfe64e69e7745ca246e2e2e66603b5af0f26ba781d157e4e35d92142bf4d
SSDEEP

1536:yvv5v6ew/kHo5y4GVatGvInax/53DXZj4dUERWEjAjz:gDwp55G0tGMaxR3DXteRWEcn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
66a3da2c6ee8bf80c1e3e2002d8c3c78_JaffaCakes118

Files

66a3da2c6ee8bf80c1e3e2002d8c3c78_JaffaCakes118
.dll windows:4 windows x86 arch:x86

c04826782d0f97f3da1a73b249887897

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstFileExW
lstrcmpiA
GlobalHandle
FindCloseChangeNotification
CreateWaitableTimerA
WriteConsoleW
TerminateProcess
SetVolumeMountPointW
GetSystemWow64DirectoryW
GetBinaryTypeA
GetCommandLineA
FreeEnvironmentStringsW
GetCurrentThreadId
CreateEventW
WriteProfileStringW
WaitForSingleObjectEx
FileTimeToLocalFileTime
GlobalGetAtomNameW
LCMapStringA
HeapCompact
GetUserDefaultLangID
GetBinaryTypeW
CreateNamedPipeW
FindVolumeClose
FileTimeToSystemTime
GetShortPathNameW
FillConsoleOutputAttribute
FormatMessageA
GetTempFileNameW
InterlockedIncrement
SetConsoleScreenBufferSize
ReadConsoleA
GetVolumeInformationA
WriteConsoleInputA
SetComputerNameExW
PeekNamedPipe
VirtualAlloc
GetTimeFormatW
ConvertDefaultLocale
GetLogicalDrives
FlushConsoleInputBuffer
GetFileSize
FreeResource
DeleteFileA
GetSystemInfo
GetConsoleCP
FlushViewOfFile
GetDateFormatA
GetDiskFreeSpaceA
GetLargestConsoleWindowSize
GetWindowsDirectoryW
EscapeCommFunction
SystemTimeToFileTime
GetDriveTypeA
FindNextVolumeMountPointW
CreateMutexW
ExitThread
LocalAlloc
GetFileAttributesW
GetFileSizeEx
ReadFileEx
ExitProcess
GetCurrentDirectoryW
IsValidCodePage
VerLanguageNameW
TerminateThread
SetFileTime
RaiseException
ReleaseSemaphore
SetCurrentDirectoryW
CreateEventA
GlobalGetAtomNameA
LocalFlags
CancelWaitableTimer
GetTimeZoneInformation
lstrcmpiW
GetDefaultCommConfigW
GetEnvironmentStringsW
LocalFree
GetTempPathW
GetStringTypeA
GetEnvironmentStrings
EnumResourceLanguagesA
SetStdHandle
SetEndOfFile
ReadDirectoryChangesW
GetTempPathA
VirtualUnlock
CancelIo
GetFileTime
WaitForMultipleObjectsEx
GetLocaleInfoA
ReadConsoleInputA
SearchPathA
lstrcatA
GetConsoleOutputCP
SetErrorMode
IsValidLanguageGroup
OpenFileMappingW
CallNamedPipeA
GetLogicalDriveStringsW
GlobalFindAtomA
ReadConsoleW
MoveFileA
GetStartupInfoW
CopyFileW
GetVersionExA
PulseEvent
SetEvent
MultiByteToWideChar
FindNextVolumeW
UnmapViewOfFile
TryEnterCriticalSection
QueueUserAPC
HeapSize
LockFile
LocalUnlock
LocalLock
GetSystemTimeAdjustment
VerSetConditionMask
TerminateJobObject
GlobalFindAtomW
lstrcpynA
AddAtomA
GetDiskFreeSpaceExW
lstrcmpW
lstrcatW
EnterCriticalSection
CreateMutexA
lstrlenA
HeapValidate
WaitForSingleObject
CreateThread
HeapFree
GetProcAddress
CreateDirectoryA
HeapAlloc
lstrlenW
GetLastError
LoadLibraryA
GetModuleFileNameA
GetComputerNameA
CreateProcessA
FindAtomW

user32

wsprintfA
CreateDialogIndirectParamA
MonitorFromPoint
AdjustWindowRect
TranslateMessage
GetWindowTextW
SetDlgItemInt
GetMessageTime
CallWindowProcW
OpenInputDesktop
MapDialogRect
wsprintfW
GetMonitorInfoW
IsWindowVisible
GetActiveWindow
SetMessageQueue
UnionRect
LoadMenuA
wvsprintfW
IsChild
MoveWindow
DestroyCaret
CopyIcon
CharPrevW
CharToOemBuffA
DialogBoxIndirectParamA
GetMenuItemInfoW
RegisterHotKey
GetClassNameW
GetDlgCtrlID
CallWindowProcA
OpenDesktopA
GetInputState
ScreenToClient
DefFrameProcA
GetWindowDC
ReuseDDElParam
ModifyMenuW
EnumWindowStationsW
SetMenuItemBitmaps
AppendMenuW
LoadImageA
WindowFromDC
CheckDlgButton
GetDCEx
GetCaretPos
LookupIconIdFromDirectory
LoadStringA
FlashWindow
GetAncestor
DrawTextExW
SetWindowTextA
SetWindowLongA
DrawIconEx
GetThreadDesktop
RemovePropW
GetScrollInfo
CopyAcceleratorTableW
DrawTextA
GetMenuState
EnableWindow
GetWindowRect
CharToOemW
CopyAcceleratorTableA
GetUserObjectInformationW
EndTask
GetSysColor
UnregisterClassW
DrawTextExA
CopyImage
BeginDeferWindowPos
FillRect
DialogBoxParamA
GetDC
DestroyIcon
ChildWindowFromPoint
CharNextW
LoadIconW
LoadCursorW
BeginPaint
CreateIconFromResourceEx
SetScrollPos
CreateWindowExW
CharLowerA
ChangeDisplaySettingsW
GetCursor
SetMenuItemInfoA
InvalidateRgn
SystemParametersInfoW
TrackMouseEvent
LoadAcceleratorsA
EndDeferWindowPos
EnumThreadWindows
SetWindowLongW
CharUpperW
IsCharAlphaA
GetClassInfoExA
SetClassLongW
GrayStringW
GetWindowTextLengthW
GetPropW
SetForegroundWindow
GetClassInfoExW
PostMessageW
TranslateAcceleratorA
GetDesktopWindow
GetDlgItemTextA
AppendMenuA
GetParent
GetClassLongA
GetDialogBaseUnits
CheckRadioButton
DestroyCursor
MessageBoxExA
SetDlgItemTextA
MsgWaitForMultipleObjects
CloseDesktop
CreateAcceleratorTableA
DrawFocusRect
LoadMenuW
RegisterWindowMessageA
SetFocus
UnhookWindowsHookEx
KillTimer
CallNextHookEx
DispatchMessageA
GetMessageA
SetWindowsHookExA
GetClassInfoA

shlwapi

StrChrW
SHRegGetBoolUSValueW
SHRegSetPathW
PathAddBackslashW
PathRemoveBackslashW
PathFileExistsA
PathIsPrefixW
PathIsRootW
PathIsNetworkPathW
UrlCombineW
SHGetValueA
StrCmpIW
PathUndecorateW
StrRetToStrW
StrToIntExW
PathIsUNCServerW
StrRetToBufW
PathSkipRootW
PathCompactPathExW
SHRegGetUSValueW
PathFindExtensionW
PathCommonPrefixW
PathFindExtensionA
UrlUnescapeW
StrStrIA
StrStrIW
StrCmpW

gdi32

RealizePalette
GetObjectW
GetSystemPaletteEntries
GetCharacterPlacementA
CreateDIBPatternBrushPt
GetTextExtentPointA
PolylineTo
WidenPath
EndPage
SetDIBits
CombineRgn
GetWorldTransform
SelectPalette
IntersectClipRect
SetDIBColorTable
EnumFontFamiliesExW
AnimatePalette
RectVisible
SetGraphicsMode
PolyBezierTo
SetTextColor
GetTextMetricsA
GetRandomRgn
EndDoc
PolyDraw
SetPaletteEntries
GetFontResourceInfoW
BitBlt
EnumFontFamiliesA
GetTextColor
PatBlt
CreateFontA
GetROP2
InvertRgn
GetWindowExtEx
CopyMetaFileW
FillPath
CreateCompatibleDC
GetWindowOrgEx
CopyMetaFileA
GetNearestPaletteIndex
SetBrushOrgEx
SetViewportOrgEx
EqualRgn
GetBitmapDimensionEx
SetTextJustification
SetMiterLimit
DescribePixelFormat
GetObjectA
GetRgnBox
CreateICW
SetMapMode
GetRegionData
AddFontResourceW
CreateHatchBrush
ResizePalette
AbortPath
GetTextExtentPoint32W
RoundRect
GetMetaFileA
SetDCBrushColor
SetPixelV
GetSystemPaletteUse
GetGraphicsMode
Polygon
GetTextFaceA
SetTextCharacterExtra
SwapBuffers
SetSystemPaletteUse
RemoveFontResourceA
DeleteObject
GetMapMode
GetCharWidth32W
GetKerningPairsA
PtVisible
CreatePalette
UpdateColors
UnrealizeObject

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c04826782d0f97f3da1a73b249887897

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 56KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 1024B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 56KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 1024B

.reloc
Size: 4KB - Virtual size: 2KB