73294d371c1a5344af96fc62ca5262ee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73294d371c1a5344af96fc62ca5262ee_JaffaCakes118
Size

186KB
MD5

73294d371c1a5344af96fc62ca5262ee
SHA1

7617ef92dccb2ba45f2857cd3a4edf8799346007
SHA256

b88a67aa390b4a19aa54555a2887230121fe59c6109d9569e63bd40a4fe3c2ab
SHA512

899b847c91fd1b820dfb1c432859292f591b4c85dbdce24c1c07d7cadc9d6b4d5ff9672c16b279759abc23af6b1047b5d3f88cd40a7403bb2205282499859788
SSDEEP

3072:YFAbtDOu3QuBjoHvbpYDKR9Ozk7+DmaYGDgKcn+c1iAo/VqKbPULC:YFktH3XoTWAOzkMZs8nP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73294d371c1a5344af96fc62ca5262ee_JaffaCakes118

Files

73294d371c1a5344af96fc62ca5262ee_JaffaCakes118
.dll windows:4 windows x86 arch:x86

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

SHSetValueA

gdi32

GetBkColor
SelectPalette

user32

GetWindow
GetClassNameA
SetWindowPlacement
CharLowerBuffA
DrawAnimatedRects
IsWindowUnicode
MapVirtualKeyA
CharToOemA
PostQuitMessage
SetPropA
SetCapture
EnableScrollBar
GetFocus
MessageBeep
IsMenu
LoadBitmapA
SetWindowsHookExA
GetMenuItemInfoA
GetWindowLongW
CreateIcon
EnumThreadWindows
GetClipboardData
IsCharLowerA
ShowOwnedPopups
RemoveMenu
InsertMenuItemA
GetScrollRange
CreateWindowExA
SetScrollRange
SetForegroundWindow
WindowFromPoint
ClientToScreen
IsDlgButtonChecked
GetWindowTextA
GetClientRect
GetKeyNameTextA
SetScrollInfo
CharNextW
GetWindowPlacement
GetIconInfo
DrawFrameControl
IsRectEmpty
CharNextA
OffsetRect
LoadIconA
CreateMenu
EndDialog
IsIconic
EmptyClipboard
UnregisterClassA
SetActiveWindow
GetMenuState
DrawIconEx
CheckMenuItem
SetParent
SetClipboardData
GetMenu
GetTopWindow
wsprintfA
GetDlgItem
TranslateMessage

kernel32

GetCPInfo
SetThreadLocale
GetModuleHandleA
GetCurrentThreadId
WaitForSingleObject
WideCharToMultiByte
GetDateFormatA
CreateEventA
CreateFileA
GetCommandLineW
SetFilePointer
SetErrorMode
VirtualAllocEx
LoadLibraryA
GetTickCount
HeapFree
VirtualFree
CreateThread
ExitProcess
GetProcAddress
GetStdHandle
GetThreadLocale

Exports

Exports

gD34I6A
0LhgMu3ChPDc3@16
eFI7uvlt
_SsuhfPH6_
_MekBI3m_wmAf@24
41GDQYdQNvWl@24
LGaAh_fh80@16
aM9AkHHsa3
_DZYWXAOB@16
_k9Bf4ro@16
_YwN3xqK@20

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abdata
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 304B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9aa36a8cd9249ec61d8e4823a33124d8

Headers

File Characteristics

Imports

shlwapi

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 9KB - Virtual size: 156KB

.data Size: 150KB - Virtual size: 149KB

.abdata Size: 512B - Virtual size: 252B

.edata Size: 512B - Virtual size: 304B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 9KB - Virtual size: 156KB

.data
Size: 150KB - Virtual size: 149KB

.abdata
Size: 512B - Virtual size: 252B

.edata
Size: 512B - Virtual size: 304B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB