71d81fe0f359fa19163980921cd98304_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71d81fe0f359fa19163980921cd98304_JaffaCakes118
Size

112KB
MD5

71d81fe0f359fa19163980921cd98304
SHA1

3898ab1f2cadd0b7e417406c37f6bafd90eb68f2
SHA256

c8969df3285b67dc192dc33a142ad065de5e2a961900381b28238189294235a0
SHA512

ef9c43f0b41c15ffd38832a38856bb492fa529477aefb13b860fd9ebbf2aa370884592372275a64451a56b31768b78836bcdd37123e35695c70d8ac9a15f14c5
SSDEEP

1536:9hM2+kHDkyOlWLzNkantq4WxQNPaJ0pPiKMzrkm0LQDzQRD9y0VoAQgMMq+wOFdL:9H++AlWLXA4WxUiJ6lYwQDyLQgMMyw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71d81fe0f359fa19163980921cd98304_JaffaCakes118

Files

71d81fe0f359fa19163980921cd98304_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

62aa088560b59e28bd5877695bb80abd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDriveTypeA
GetFullPathNameW
LCMapStringA
GetTimeZoneInformation
GlobalAddAtomW
QueueUserWorkItem
OpenFile
SetComputerNameExW
FindFirstFileExW
FindFirstVolumeW
CreateDirectoryW
SetCurrentDirectoryW
GetDiskFreeSpaceA
FindNextFileW
SetWaitableTimer
WriteFileEx
GetUserDefaultLCID
OpenSemaphoreW
EnumSystemLocalesA
FormatMessageW
GlobalGetAtomNameA
WaitForSingleObjectEx
FindResourceExW
SetConsoleTitleA
RemoveDirectoryW
IsWow64Process
MoveFileExA
GetUserDefaultLangID
AssignProcessToJobObject
CreateMailslotA
FlushFileBuffers
WinExec
GetStringTypeW
LCMapStringW
OpenJobObjectW
OpenMutexA
CreateWaitableTimerW
SetFileAttributesA
GetVolumeNameForVolumeMountPointW
lstrcmpiA
CreateEventA
ClearCommError
DeleteCriticalSection
WriteConsoleW
SetConsoleMode
DosDateTimeToFileTime
IsValidLanguageGroup
DuplicateHandle
UnregisterWaitEx
SetConsoleCtrlHandler
SetVolumeMountPointW
GetTimeFormatA
CopyFileExW
SetConsoleActiveScreenBuffer
GetTempFileNameW
FindFirstChangeNotificationW
lstrlenA
GlobalFindAtomA
lstrcpynW
GetSystemWindowsDirectoryA
GlobalReAlloc
DeleteTimerQueueTimer
LocalHandle
GetThreadPriority
GetProfileIntA
IsBadHugeReadPtr
HeapWalk
GetSystemDefaultUILanguage
GetCurrentThread
lstrcatW
DeviceIoControl
GetLogicalDrives
LocalReAlloc
VirtualAllocEx
PeekConsoleInputA
GetProfileIntW
CancelIo
FillConsoleOutputCharacterW
WaitNamedPipeW
GetEnvironmentVariableA
ExitThread
HeapUnlock
GetNumberFormatW
CreateRemoteThread
GlobalAddAtomA
GetExitCodeThread
FindNextVolumeMountPointW
GetConsoleMode
GetTempFileNameA
FillConsoleOutputAttribute
ResumeThread
GetThreadContext
CallNamedPipeA
GetUserDefaultUILanguage
UnlockFileEx
WriteProfileStringA
GetThreadTimes
GetComputerNameW
lstrcpynA
SleepEx
OpenMutexW
GetProcessVersion
GetShortPathNameA
LocalFlags
CreateTimerQueue
FormatMessageA
Beep
GetQueuedCompletionStatus
FindNextChangeNotification
FlushConsoleInputBuffer
GetSystemTime
SetStdHandle
LocalAlloc
PulseEvent
HeapValidate
IsProcessorFeaturePresent
GetFileTime
SetProcessWorkingSetSize
SetInformationJobObject
FreeResource
ExitProcess
lstrcmpW
AllocConsole
GetStringTypeA
GetDateFormatW
InterlockedExchange
MoveFileA
VirtualProtect
GetModuleFileNameA
GetSystemTimeAsFileTime
CreateProcessA
GetComputerNameA
HeapAlloc
GetLastError
VirtualQuery
ReleaseMutex
Sleep
CreateFileA
InterlockedDecrement
DeleteFileA
InitializeCriticalSection
MapViewOfFile
EnterCriticalSection
GetCurrentProcessId
ReadFile
LeaveCriticalSection
GetProcAddress
CreateFileMappingA
LoadLibraryA
LocalFree
UnmapViewOfFile
CopyFileA
WaitForSingleObject
InterlockedIncrement
SetLastError
CreateDirectoryA

gdi32

SwapBuffers
PolyBezierTo
GetPixel
StretchDIBits
InvertRgn
ExtCreateRegion
PlayMetaFile
CreatePolygonRgn
GetBkMode
SetDCBrushColor
GetNearestPaletteIndex
PathToRegion
Escape
GetPaletteEntries
CreateDiscardableBitmap
GetTextExtentPoint32A
CloseEnhMetaFile
CreateFontW
LineTo
GetTextColor
GetObjectA
CreateRectRgnIndirect
SetViewportExtEx
CreatePen
Chord
GetTextExtentExPointW
SetBkMode
SetArcDirection
GetObjectW
GetStretchBltMode
SetTextAlign
PtVisible
GetSystemPaletteUse
GetBitmapDimensionEx
CreateBitmapIndirect
SetBitmapBits
EqualRgn
CreateRoundRectRgn
SetICMMode
RemoveFontResourceA
CreateDIBSection
TextOutW
GetDIBits
GetRegionData
GetMetaFileBitsEx
GetWindowExtEx
SetBrushOrgEx
StretchBlt
DPtoLP
TextOutA
GetTextCharsetInfo
EndDoc
GetROP2
GetCharABCWidthsW
CreateEnhMetaFileA
ScaleWindowExtEx
GetEnhMetaFileHeader
GetRgnBox
EnumMetaFile
SetROP2
ExtTextOutW
GetTextCharacterExtra
GetBkColor
BeginPath
EndPage
EndPath
EnumFontsA
PolylineTo
CreateDCW
UnrealizeObject
StrokeAndFillPath

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62aa088560b59e28bd5877695bb80abd

Headers

File Characteristics

Imports

kernel32

gdi32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 86KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 88KB - Virtual size: 86KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB