7200c672e8e29f70143d2272fa610646_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7200c672e8e29f70143d2272fa610646_JaffaCakes118
Size

84KB
MD5

7200c672e8e29f70143d2272fa610646
SHA1

078829490659a7019721f1845f733afc427456fa
SHA256

00f2234324fe4c6eebe834424b02fcbdcb7cf83651c576053f7a76608543b8d0
SHA512

e08ec735327507bc12c7d672fd5f093726b90be025122eb13efdf72e2a60dd0858d90fdf2c1d2f73d441ef4f98ed8c9b256d26c164a502b82a3a1ada619ffd62
SSDEEP

1536:b2pnLvCufjqheoMmaeDiAmt/Qgb/P2Qyt7BPjxZ:bo7CILeDiAmHb/P2Qyt9jx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7200c672e8e29f70143d2272fa610646_JaffaCakes118

Files

7200c672e8e29f70143d2272fa610646_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9fbe54641fba916be5e1002126df6013

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommProperties
ReadFileEx
GetSystemDirectoryW
BindIoCompletionCallback
HeapValidate
PurgeComm
RegisterWaitForSingleObject
GetStringTypeA
GetDiskFreeSpaceExW
GetModuleHandleW
GetLogicalDriveStringsW
HeapWalk
GetThreadTimes
HeapCompact
GetProfileIntA
ReadConsoleA
DisconnectNamedPipe
CancelIo
UnregisterWait
WriteConsoleA
GetCPInfo
CreateMailslotW
MoveFileW
GetProcessVersion
GetProfileIntW
AddAtomA
CreateTimerQueue
VirtualFree
ReadFile
CreateJobObjectW
GlobalAddAtomW
ReleaseActCtx
SetConsoleScreenBufferSize
DeleteFileW
EscapeCommFunction
GetLongPathNameW
OpenThread
EnumSystemLocalesA
LocalFlags
GetCurrentThreadId
IsDBCSLeadByte
SetProcessShutdownParameters
GetCommTimeouts
CreateProcessW
ResumeThread
TerminateThread
IsBadHugeWritePtr
GetProfileStringA
GetCurrentDirectoryA
GetCurrentThread
VerifyVersionInfoW
GetWindowsDirectoryA
GetLogicalDriveStringsA
SetNamedPipeHandleState
WTSGetActiveConsoleSessionId
GetProcessAffinityMask
CloseHandle
SetInformationJobObject
GetModuleHandleExW
FlushConsoleInputBuffer
CreateFileW
SystemTimeToTzSpecificLocalTime
SetComputerNameExW
GetDriveTypeA
HeapSetInformation
SetFilePointerEx
HeapCreate
SetErrorMode
TransactNamedPipe
SetVolumeMountPointW
TryEnterCriticalSection
WriteProfileStringW
LockFileEx
GetModuleHandleA
LeaveCriticalSection
lstrlenW
LoadLibraryA
InterlockedIncrement
CreateDirectoryA
LocalFree
CreateFileA
GetProcAddress
UnmapViewOfFile
InterlockedExchange
WriteFile
GetLastError
HeapFree
EnterCriticalSection
CreateFileMappingA
CreateThread

user32

ToAscii
GetMonitorInfoW
GrayStringW
DrawFocusRect
GetActiveWindow
EndPaint
DialogBoxParamW
MapVirtualKeyA
EnumWindowStationsW
DeleteMenu
RemovePropW
DrawTextExA
SetWindowTextA
EnumThreadWindows
GetMenuItemInfoA
GetProcessDefaultLayout
GetScrollInfo
MessageBeep
IsCharAlphaW
GetMenu
SetMenu
DefFrameProcA
DialogBoxIndirectParamA
SetMenuDefaultItem
GetSystemMenu
LoadImageA
LoadImageW
DefMDIChildProcA
MonitorFromWindow
EndTask
MessageBoxIndirectW
LoadAcceleratorsA
InsertMenuW
SetMenuItemInfoA
GetPropA
GetClassLongA
SetCapture
DefFrameProcW
GetMessageExtraInfo
ReleaseDC
ScrollWindow
GetDoubleClickTime
DrawTextW
wvsprintfW
SetClassLongW
GetDlgItemTextW
SetWindowPos
CreateIconIndirect
PostQuitMessage
GetWindowWord
ShowScrollBar
GetLastActivePopup
SetWindowWord
GetMessagePos
SendMessageTimeoutW
CharPrevA
AdjustWindowRect
GetWindowTextA
ModifyMenuW
GetNextDlgGroupItem
CreateDialogIndirectParamA
MsgWaitForMultipleObjects
KillTimer
LoadCursorW

gdi32

GetWindowOrgEx
CreateEnhMetaFileW
BeginPath
SetBkColor
CreateICW
GetPixel
SetLayout
InvertRgn
CreateHalftonePalette
GetTextExtentPoint32A
Polygon
CopyMetaFileA
EnumFontFamiliesExW
CreateMetaFileW
CloseMetaFile
GetStockObject
GetTextCharset
GetCurrentPositionEx
GetNearestColor
GetMetaFileA
DeleteEnhMetaFile
GetTextMetricsW
StartDocA
GetPaletteEntries
CreateRectRgnIndirect
EqualRgn
LineTo
CreateBrushIndirect
GetWinMetaFileBits
SetPixelV
PlayEnhMetaFileRecord
SetGraphicsMode
GetTextMetricsA
GetRegionData
DeleteObject
CreateScalableFontResourceA
ScaleWindowExtEx
GetObjectType
GetPolyFillMode
AddFontResourceW

Exports

Exports

CPlApplet

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9fbe54641fba916be5e1002126df6013

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB