77b820bb6bdd4ed40e3fe9fc1a01c558_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

77b820bb6bdd4ed40e3fe9fc1a01c558_JaffaCakes118
Size

67KB
MD5

77b820bb6bdd4ed40e3fe9fc1a01c558
SHA1

9fd4b3311975d8a06056dd96b440e9777bcf9e7b
SHA256

866f28c57c79aa1e1e8201234c0eeb0f937d3990d0ad3805fbcb853684c7f01a
SHA512

d557e19a027b4d2d9932293b8fd284094b8eb1169d82e9d09aa7614c5908ebbe42ad0edd5596ba3f89baf45cf1a6d6a9e7f038b3aa85f1b6f2f457b12f2a9cb5
SSDEEP

1536:IU44wUtQ02JwA6jcV4lI52L+ATR30BDZa2q3b3x:IdrUtQorI52rufS39

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
77b820bb6bdd4ed40e3fe9fc1a01c558_JaffaCakes118

Files

77b820bb6bdd4ed40e3fe9fc1a01c558_JaffaCakes118
.dll windows:4 windows x86 arch:x86

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

ChangeMenuA
SetFocus
ShowCursor
ShowWindow
DrawTextA
MessageBeep
LoadIconA
GetMenu
CharUpperA
CharToOemBuffA
MessageBoxA

kernel32

GetCommandLineA
ExitProcess
CloseHandle
GetStartupInfoA
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnmapViewOfFile
GetModuleHandleA

wininet

InternetCanonicalizeUrlA
InternetSetOptionExA
InternetSetStatusCallbackA
HttpEndRequestA

advapi32

LsaGetUserName
RegEnumKeyA
LsaGetSystemAccessAccount
LsaGetRemoteUserName
LsaFreeMemory
LsaEnumerateTrustedDomainsEx
LsaEnumeratePrivileges
LsaEnumerateAccountsWithUserRight
LsaEnumerateAccountRights
LsaClose
LsaCreateAccount
LsaCreateTrustedDomainEx
LsaDeleteTrustedDomain

ole32

OleUninitialize
OleInitialize
DoDragDrop
CreateILockBytesOnHGlobal
CoUninitialize
CoCreateInstance
CoGetClassObject
CoGetMalloc
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx

msvbvm60

__vbaFileClose
__vbaDateStr

dsound

DirectSoundCreate
DirectSoundCaptureEnumerateW
DirectSoundEnumerateA

msvfw32

ICImageDecompress
ord2
DrawDibRealize

Sections

.text
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

Imports

user32

kernel32

wininet

advapi32

ole32

msvbvm60

dsound

msvfw32

Sections

.text Size: 27KB - Virtual size: 28KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 28KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB