719c80ab07ed4df840bddaa5a5fa7cef_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

719c80ab07ed4df840bddaa5a5fa7cef_JaffaCakes118
Size

244KB
MD5

719c80ab07ed4df840bddaa5a5fa7cef
SHA1

6f83f8c66074f4fe8fea5eb998061f16cb2cfc60
SHA256

fff9acb89ed6fa9b97d205e605a4573f2831ba13715e3d0882e291888c3ef260
SHA512

89c065eaf0f45357c86136fd3cab89fe6b7dc12b8f705b4863cdd6a41208e687f64f8ce3d5175f63c5698fe0ec3d24086583a4577abda99b9edff5f4b0f3e271
SSDEEP

6144:JwhjvPUvCL1ModriuO2P/26PGPxDI7q2nzppp:Kh4vSMoriuBP/vG5DI7rd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
719c80ab07ed4df840bddaa5a5fa7cef_JaffaCakes118

Files

719c80ab07ed4df840bddaa5a5fa7cef_JaffaCakes118
.dll windows:4 windows x86 arch:x86

17a69ee85fc54be0bfbd8331611e21a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegDeleteKeyA

oleaut32

VarDecNeg
VarDateFromDec
VariantCopyInd
SysStringLen
SafeArrayGetElemsize
VarCyFromDec

kernel32

EnumDateFormatsExA
EnumDateFormatsExW
ExitProcess
ExpandEnvironmentStringsW
FindFirstVolumeMountPointW
GetBinaryTypeA
GetCommConfig
GetCommandLineA
GetDateFormatA
GetFileSizeEx
GetModuleHandleA
GetTapeParameters
GetVersionExA
CreateJobObjectW
HeapAlloc
HeapCreate
InitializeCriticalSection
IsBadReadPtr
IsBadWritePtr
LocalReAlloc
Module32FirstW
ReadFileEx
ReplaceFileW
SetFileAttributesW
UnmapViewOfFile
VirtualProtectEx
lstrcatW
lstrlenA
CompareFileTime
AddConsoleAliasW
GlobalLock

ole32

CoGetClassVersion
CoRegisterMallocSpy
StgCreateDocfile
OleCreateLinkToFile
CoTaskMemRealloc
CLSIDFromProgIDEx

imm32

ImmUnregisterWordA
ImmReleaseContext
ImmReSizeIMCC
ImmIsIME
ImmGetCompositionFontW
ImmGetVirtualKey
ImmEnumInputContext

comctl32

PropertySheetA

ntdll

wcscpy
wcscspn
RtlInitString
RtlDestroyEnvironment

Exports

Exports

D3D10ResourceGetMappedPitch
DevelopLogPosToNormalPos
EnumRelCamSettingReset
GLUnregisterBufferObject
GetDevSplineArray
GetExtractJpegSize_ByModelName
GetIIMInfoCount
GetSplineArrayEx
GraphicsResourceGetMappedPointer
HostAlloc
Memcpy2DFromArray

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17a69ee85fc54be0bfbd8331611e21a9

Headers

File Characteristics

Imports

advapi32

oleaut32

kernel32

ole32

imm32

comctl32

ntdll

Exports

Exports

Sections

.text Size: 160KB - Virtual size: 160KB

.data Size: 72KB - Virtual size: 116KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 160KB - Virtual size: 160KB

.data
Size: 72KB - Virtual size: 116KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB