689659ebdeaae4279b8c70f5c715adba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

689659ebdeaae4279b8c70f5c715adba_JaffaCakes118
Size

82KB
MD5

689659ebdeaae4279b8c70f5c715adba
SHA1

fed4c09c1737f993042c1186d50af1074a49823f
SHA256

a64b9950dc76b2a3e13f0c2687f85e58478824b9cf8929899d40dcc45bb24f35
SHA512

ed034f573d1ba9282b69023284204b84fc68884fed6315e58cb7d7a0a98ae1f7bf1c054b1d55ebdc7bd138b2ff48ee5009ca4beb940a9cd9b165dfa86f32ebbe
SSDEEP

1536:sgw2jbj52QdQgWvOGtyHpw8aU6M+EGzG+BhHk4StYMtd4K+pmEs6ImG:sJ2jblfdVH68aU6M+EreHk47PaEXG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
689659ebdeaae4279b8c70f5c715adba_JaffaCakes118

Files

689659ebdeaae4279b8c70f5c715adba_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9ef48b6bde8235219c39970033b38d3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
SetConsoleMode
WriteConsoleW
ReadConsoleW
HeapReAlloc
HeapFree
HeapSize
HeapAlloc
GetProcessHeap
HeapValidate
CompareStringA
SetLastError
lstrlenW
GetFileType
GetStdHandle
GetConsoleMode
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VerSetConditionMask
GetComputerNameExW
FormatMessageW
LocalFree
GetConsoleOutputCP
WideCharToMultiByte
GetThreadLocale
GetLastError
FreeLibrary
GetProcAddress
GetModuleHandleW
GetCommandLineW
GetStartupInfoW
GetSystemPowerStatus
LoadLibraryW
Sleep
InterlockedExchange
GetVersionExW
InterlockedCompareExchange
TerminateProcess
GetComputerNameExA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameW
GetComputerNameW
CreateFileW
WriteFile
CloseHandle
CreateMailslotW
ReadFile
VirtualProtect
VirtualFree
GetCommandLineA
VerifyVersionInfoW
VirtualAlloc

user32

CharNextW
BeginPaint
CharUpperW
LoadStringW
SetTimer
SetLayeredWindowAttributes
SetWindowPos
InvalidateRect
PostMessageW
EndPaint
CreateWindowExW
RegisterClassW
DestroyWindow
LoadImageW
FillRect
SetRect
ShowWindow
DefWindowProcW
ValidateRect
SystemParametersInfoW
SetCursor
GetCursorPos
PostQuitMessage
IsWindow
SendMessageW
PeekMessageW
GetForegroundWindow
DispatchMessageW
TranslateMessage
GetMessageW
SetForegroundWindow
FindWindowW
ReleaseDC
GetDC
GetSystemMetrics
GetClientRect
LoadIconW
DialogBoxParamW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

gdi32

DeleteDC
GetClipBox
CreateCompatibleDC
GetStockObject
BitBlt
SelectObject
GetObjectW

ole32

CoCreateInstance
CLSIDFromString

msvcr71

_lock
_onexit
exit
_initterm
time
srand
rand
wcstok
__iob_func
fprintf
fflush
wcstol
wcstoul
_fileno
_errno
_get_osfhandle
_memicmp
_vsnwprintf
_iob
memset
_XcptFilter
_amsg_exit
_except_handler3
_unlock
_adjust_fdiv
malloc
_callnewh
_CxxThrowException
free
_ultoa
memcpy
_wcsicmp
_vsnprintf
__CppXcptFilter
__dllonexit

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ef48b6bde8235219c39970033b38d3b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 2KB - Virtual size: 36KB

.sxdata Size: 512B - Virtual size: 8B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 2KB - Virtual size: 36KB

.sxdata
Size: 512B - Virtual size: 8B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 3KB - Virtual size: 2KB