67e028bbd460dd85074261c730a58244_JaffaCakes118

General

Target

67e028bbd460dd85074261c730a58244_JaffaCakes118
Size

164KB
MD5

67e028bbd460dd85074261c730a58244
SHA1

7e61b70c97c7670ef095af7ca2272a589f6e1634
SHA256

ca9647d26f96bdd98b388cd528912cf3e51152f477442281ff2e21e8cee23e77
SHA512

c759d233d7117055eb45aaaed9e443f0e90b5dd9dc2d1568ee0907bc6623766d03f5dd51a2d6d26614843a7fa874e2606cb8a449cea445e788e704ea0c16af62
SSDEEP

3072:imu4+PyIQ8hk8qI7BJcRDNUWKeKqpCzs/zSHk6EybfG:iLWIZa7x6bOcI/zOke+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67e028bbd460dd85074261c730a58244_JaffaCakes118

Files

67e028bbd460dd85074261c730a58244_JaffaCakes118
.dll windows:4 windows x86 arch:x86

2ba0e299bd5d6665c3d481f57297d46a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GetProcAddress
GetVersion
GetUserDefaultLCID
MulDiv
Sleep
GetComputerNameA
VirtualAlloc
VirtualProtect
VirtualQuery
DosDateTimeToFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
SetLastError
GetSystemTimeAsFileTime
GetLastError
GetCurrentThreadId
IsBadCodePtr
GetProcessHeap
IsBadReadPtr
GetLocalTime

user32

GetTitleBarInfo
GetDlgItem
CopyIcon
WindowFromDC
IsCharUpperA
GetCursor
GetWindowPlacement
IsChild
IsMenu
SetLastErrorEx
BlockInput
IsWindowUnicode
GetMenuContextHelpId
GetWindowTextA

advapi32

IsValidAcl
IsValidSid
InitializeSecurityDescriptor
RevertToSelf

msvcrt

_CIsinh
_swab
_memccpy
_adjust_fdiv
malloc
_initterm
free
time
localeconv
_hypot
modf
_pctype
_isctype
frexp
__mb_cur_max
_errno
__doserrno
_CIpow
_CIfmod
_CItanh
srand
div
ldiv
_set_error_mode
memchr

gdi32

GdiFlush
GetROP2
GetBkMode
GdiGetBatchLimit

shell32

ord524
ord64

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ba0e299bd5d6665c3d481f57297d46a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

gdi32

shell32

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 65KB - Virtual size: 66KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 65KB - Virtual size: 66KB

.reloc
Size: 2KB - Virtual size: 2KB