7329ddef5d5c1740299c446dd1c6dcf5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7329ddef5d5c1740299c446dd1c6dcf5_JaffaCakes118
Size

80KB
MD5

7329ddef5d5c1740299c446dd1c6dcf5
SHA1

23af668c11a95eb0a0a428cddaa8064de2ea0708
SHA256

7927abcf61f657fea2b620493076a92fe141a4b60a70e0331803adbdc4c7d4be
SHA512

817aef9dd7da418111b034ad49455b2b4ad0ed64eb85e50446e431f0e2c7fee6facb1cba1dae63f3089d9159f42fd0bf01fbfb40a67dd8e2ba9b41566f0ad6f7
SSDEEP

1536:1ccaGtUpMlSlVRlJIhpMJD9Q4EjXJMNRWBplRwKTK0CBlt47:1OGtOAWLmL22zE0lBTi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7329ddef5d5c1740299c446dd1c6dcf5_JaffaCakes118

Files

7329ddef5d5c1740299c446dd1c6dcf5_JaffaCakes118
.dll windows:4 windows x86 arch:x86

81cc98287bdf5eb1e83c65f4ea20b8d9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointer
MapViewOfFile
GetModuleHandleA
DeviceIoControl
VirtualAlloc
GetFileInformationByHandle
GetSystemTime
HeapFree
GetTimeFormatW
DosDateTimeToFileTime
GetLastError
SystemTimeToFileTime
SetStdHandle
GetCommandLineA
GetTempFileNameW
GetProcAddress
lstrcpynW
GetCurrentProcessId
CreateFileW
LoadLibraryA
GlobalUnlock
VirtualAlloc
ExitProcess
Sleep
ReadFile
GetCurrentThread
GetVersionExA
GetCurrentThreadId
RtlUnwind
CreateProcessA
LoadLibraryA
InterlockedExchange
GetConsoleOutputCP
GetVolumeInformationW
CreateDirectoryA

msvcrt

__wgetmainargs
toupper
memmove
wcstol
_XcptFilter
__getmainargs
fprintf
_initterm
wcscpy
strchr
fflush
memcpy
iscntrl
_snwprintf
_wcsicmp
_vsnprintf
_wtoi
malloc
__CxxFrameHandler
_wtol
_exit
strncpy
_onexit
_except_handler3

user32

GetAsyncKeyState
BeginPaint
GetProcessWindowStation
DefWindowProcW
DefDlgProcW
CheckDlgButton
RedrawWindow
FillRect
SetForegroundWindow
LoadStringW
TranslateAcceleratorW
SetFocus
ShowWindow
SetWindowsHookExW
EnumThreadWindows
DestroyWindow
CheckMenuItem
CharUpperW
CopyRect
DrawTextW
IsWindow
GetActiveWindow
ReleaseCapture
SetScrollPos
GetFocus
GetCapture
SetTimer
EnableMenuItem

gdi32

TextOutW
ExtTextOutW
TranslateCharsetInfo
RealizePalette
RestoreDC
SelectPalette
GetTextExtentPoint32W
SetWindowExtEx
GetTextExtentPointW
SetBkMode
SetBkColor
CreatePalette
SaveDC
StretchBlt
GetObjectW
PatBlt

opengl32

glClearDepth

Exports

Exports

BugAxdl
NcIergYldypQcfpiSc
ReHhcbcpCxnfDbnxn

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pr0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pr1
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81cc98287bdf5eb1e83c65f4ea20b8d9

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 86B

.pr0 Size: 1KB - Virtual size: 1KB

.pr1 Size: 1KB - Virtual size: 1KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 512B - Virtual size: 40B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 86B

.pr0
Size: 1KB - Virtual size: 1KB

.pr1
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 512B - Virtual size: 40B