81c951ceb2eeb2ff5ab75c61f038903b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

81c951ceb2eeb2ff5ab75c61f038903b_JaffaCakes118
Size

103KB
MD5

81c951ceb2eeb2ff5ab75c61f038903b
SHA1

9903b53c41c693a29ab00ae37657ae1337377493
SHA256

2efc2685cd3b3284f5f2dca03aef002267fcc3ae96062d516819c3c920dce2f8
SHA512

3255bd36cbb49b724c7f62e5f188070f009e115c509e4a9a0ac71744752fc8c7ff6aab9ce3b0b618ec52dc77b681f25862b94ad2225c3f2036b9eaa879605756
SSDEEP

1536:xlai+2m2TDQI6+AApU/GRGSH9neRkNpRmCDyU0KGANwV4iNUcOPbVlP9X/:x1UIkApU/9GnemRJ0JEI3OzVlP9P

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81c951ceb2eeb2ff5ab75c61f038903b_JaffaCakes118

Files

81c951ceb2eeb2ff5ab75c61f038903b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

4c399770bc987a6cbf1c19c4416a6df5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStartupInfoA
Sleep
_lclose
GlobalReAlloc
GetProcessHeap
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentProcess
FlushInstructionCache
InterlockedIncrement
InterlockedDecrement
lstrcmpiA
RaiseException
GetCurrentThreadId
FormatMessageW
LocalFree
OutputDebugStringW
CompareStringW
FindFirstFileW
GetComputerNameExW
lstrlenA
MoveFileExW
TlsGetValue
TlsSetValue
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
_lread
HeapSize
GetCPInfo
GetOEMCP
GetACP
UnhandledExceptionFilter
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetFileType
GetStdHandle
SetHandleCount
TerminateProcess
ExitProcess
VirtualQuery
InterlockedExchange
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
RtlUnwind
HeapFree
HeapAlloc
GlobalLock
GetSystemInfo
FreeLibrary
GlobalUnlock
GlobalHandle
GlobalFree
LoadLibraryA
GetModuleHandleA
GetProcAddress
GetTickCount
FreeResource
GlobalAlloc
GetCommandLineA
LCMapStringA
VirtualProtect

user32

MessageBoxW
GetWindowTextLengthW
GetWindowTextW
SetFocus
GetFocus
GetWindowThreadProcessId
AttachThreadInput
SetDlgItemTextW
SendMessageW
CreateDialogParamA
GetParent
LoadStringA
InvalidateRect
GetDesktopWindow
GetCursorPos
PostMessageA
IsWindow
SetForegroundWindow
DestroyWindow
DestroyMenu
SetWindowPos
CreateWindowExA
UpdateWindow
PostQuitMessage
EndPaint
BeginPaint
PtInRect
SetWindowLongA
DialogBoxParamA
GetClientRect
GetSystemMetrics
FindWindowA
GetMessageA
TranslateMessage
DispatchMessageA
GetWindowLongA
SetCursor
GetForegroundWindow
SystemParametersInfoA
RegisterClassA
CallWindowProcA
IsDlgButtonChecked
SendNotifyMessageA
GetSystemMenu
GetWindowRect
ScreenToClient
SetWindowTextA
CheckDlgButton
GetDlgItem
LoadIconA
ShowWindow
GetDC
ReleaseDC
SendMessageA
MessageBoxA
DefWindowProcA
ClientToScreen
TrackPopupMenu
CheckMenuItem
AppendMenuA

advapi32

RegCloseKey
RegQueryValueExA
RegEnumValueA
RegQueryInfoKeyA
RegCreateKeyExW
RegOpenKeyA

gdi32

GetDIBits
GetStockObject
SetStretchBltMode
SetDIBitsToDevice
SelectPalette
RealizePalette

ole32

CoInitialize
CoCreateInstance

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4c399770bc987a6cbf1c19c4416a6df5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

Sections

.text Size: 51KB - Virtual size: 51KB

.rdata Size: 40KB - Virtual size: 40KB

.data Size: 4KB - Virtual size: 36KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 51KB - Virtual size: 51KB

.rdata
Size: 40KB - Virtual size: 40KB

.data
Size: 4KB - Virtual size: 36KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 4KB