86db6b3651f3596c2e307632f5cbb77d_JaffaCakes118

General

Target

86db6b3651f3596c2e307632f5cbb77d_JaffaCakes118
Size

19KB
MD5

86db6b3651f3596c2e307632f5cbb77d
SHA1

f28099891108115eaf911f0cae57d4bffd6db022
SHA256

2bf5d0fc31a6798a1997dfc373d9a904ee41c8ca96a0dd05b014d26a6c1ffb0e
SHA512

76fc9e7a1f1cc3654f5f3df9109080683dfe95f44f0884a8ba2b6cd99eea2d9a50efb0542ef215b2d25431dd2b1cc2e501145b6ee13dd2d316cb00bbf2c6a0e0
SSDEEP

384:54TtMy04TuVTpFYsJlnuKHQ1K9HLjTKtYYpsR5Zz+lbUkT8POs1Q:sMyLTuJNuK7RS2X+lgI8n1Q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dll.dll

Files

86db6b3651f3596c2e307632f5cbb77d_JaffaCakes118
.rar
dll.dll
.dll windows:5 windows x86 arch:x86

0322c672480e22ebbc9551b18710e57d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
suckme.lnk_
.lnk

Sharing

General

Malware Config

Signatures

Files

0322c672480e22ebbc9551b18710e57d

Headers

File Characteristics

Imports

kernel32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 3KB - Virtual size: 6KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 3KB - Virtual size: 6KB

.reloc
Size: 3KB - Virtual size: 3KB