832cc8fa4dcdb18288f6032d6d36426c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

832cc8fa4dcdb18288f6032d6d36426c_JaffaCakes118
Size

244KB
MD5

832cc8fa4dcdb18288f6032d6d36426c
SHA1

18873504636bedfd78a70ccee4d4776ff8cab63d
SHA256

00fad96b4046ef8be5b5537007704945a58f055bbcf6232c01b703ece923c085
SHA512

1fb58c450d35eb8abe4cecb4c206989cadd4a0f76b157f7628f6b27e5d7f7ce8aaced293c447a7112170add49c6ad5e18a58293ce8934525fcbc689944222f97
SSDEEP

6144:fl1Rh7W8n8eo6aFlkDAeBi+34Pzk9TdiiJBr207hypbY:fbRh7Wq8x6SmDpU+3/5+0Fy

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
832cc8fa4dcdb18288f6032d6d36426c_JaffaCakes118

Files

832cc8fa4dcdb18288f6032d6d36426c_JaffaCakes118
.dll windows:4 windows x86 arch:x86

5c2572aabd2fbc1b434859e653e2f1d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

TranslateMessage
SetWindowPos
SetTimer
SetForegroundWindow
SetDlgItemTextW
SendMessageW
SendDlgItemMessageW
RegisterClassW
PostQuitMessage
PostMessageW
MessageBoxW
LoadStringW
LoadImageW
LoadIconW
KillTimer
IsDlgButtonChecked
GetWindowRect
GetWindowLongW
GetSystemMetrics
GetParent
GetMessageW
GetDlgItem
GetDesktopWindow
GetClientRect
EndDialog
DispatchMessageW
DialogBoxParamW
DefWindowProcW
CreateWindowExW
CheckDlgButton

shell32

Shell_NotifyIconW

comctl32

ord17

kernel32

lstrcpyW
lstrcmpiW
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
lstrlenW
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TerminateProcess
Sleep
SetUnhandledExceptionFilter
SetThreadPriority
SetStdHandle
SetProcessShutdownParameters
SetLastError
SetHandleCount
SetFilePointer
SetEvent
RtlUnwind
ResumeThread
VirtualProtect
CloseHandle
CompareStringW
CreateEventW
CreateThread
EnterCriticalSection
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileW
FindNextChangeNotification
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedExchange
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFree
LocalReAlloc
MultiByteToWideChar
OpenEventW
QueryPerformanceCounter

advapi32

SetSecurityInfo
RegQueryValueExW
RegOpenKeyExW
RegNotifyChangeKeyValue
RegCloseKey
GetSecurityInfo
GetAce

Exports

Exports

AddDataToImageItem
BindTexture2D
CopyClickWBCoefs
CreateFolder
EnumDeviceReset
EnumRelCamSettingReset
GetAFDistanceSettingCount
GetDevice
GetDiscErasingTime
GetExposureComp
MallocPitch
RegisterFatBinary
UnbindTexture
WGLGetDevice

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c2572aabd2fbc1b434859e653e2f1d4

Headers

File Characteristics

Imports

user32

shell32

comctl32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 136KB

.data Size: 96KB - Virtual size: 144KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 136KB - Virtual size: 136KB

.data
Size: 96KB - Virtual size: 144KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB