89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118

General

Target

89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118
Size

139KB
MD5

89cad2333b6c81c0c1688d87a62f7df0
SHA1

fbb047ef394e232e08d849c706d1cb11f88cace2
SHA256

d46b6e60d72d2d4dc100b2278ecb25da33b2768ef9e80b66c4078254cbee5353
SHA512

911ebc7090978959747ddb631a5034d7d541f8161fc1713ee69cb4543dcb500e183f347124e8e664f14b63ff1d8ee6ff78434ebe93adcef13c5b75ac592fb066
SSDEEP

3072:/ui32IfXBqUcicSX8mTqHLZvZsVQF6xzYSH+TsuR3qbQR:/v3Nflf8vr5vYJx0X3qI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118

Files

89cad2333b6c81c0c1688d87a62f7df0_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f771bb82452f13c0238b875ee2cf4b12

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiA
lstrcmpA
lstrcmpiW
lstrcmpW
lstrlenA
lstrcpyA
lstrlenW
lstrcpyW
MultiByteToWideChar
GlobalFree
GlobalAlloc

user32

DialogBoxParamW
DialogBoxParamA
CharLowerA
GetWindowRect
GetWindowTextA
GetWindowTextW
EndDialog
MessageBoxW
MessageBoxA
GetDlgItem
SetWindowTextW
SetWindowTextA
EnableWindow
CharLowerW
GetDC
HideCaret
DrawTextA
DrawTextW
InvalidateRgn
ShowCaret
ReleaseDC
SendMessageW
SendMessageA
MoveWindow

gdi32

DeleteObject
SetTextColor
SetBkMode
CreateRectRgn
GetTextMetricsW
GetTextMetricsA
SelectObject
CreateFontIndirectW
CreateFontIndirectA
SetBkColor

Exports

Exports

DllAkelPadID
GoToMatchingBracket
Main
SelToMatchingBracket
Settings

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f771bb82452f13c0238b875ee2cf4b12

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 200KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 200KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB

.text
Size: 108KB - Virtual size: 112KB