8d07f64cf32dbca807e7f3043c0e4322_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8d07f64cf32dbca807e7f3043c0e4322_JaffaCakes118
Size

113KB
MD5

8d07f64cf32dbca807e7f3043c0e4322
SHA1

7c1c836e886c6c46ee8172a60e2c184465014d61
SHA256

580784d8b3aa958146fd9f6b91dcbfca0df8698d6522da64d3d6b8ca6ea1b2e7
SHA512

3db05a7278e6dbecbd0530ca1ee69cef071a774c0da9a19e6839f8eea9b038852fbd2d290dc9985077fec7581cc5402af7b381b16981f127de340f461e7bf1f6
SSDEEP

1536:NELDkkdsOTW5lFt6uWV0HUmVHZBSOC954R44TkFQVCtv7vy5nr6lUuoTkgTnj:ikkdsO+FpWYUmG5O44Tk6mjmuoXTn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8d07f64cf32dbca807e7f3043c0e4322_JaffaCakes118

Files

8d07f64cf32dbca807e7f3043c0e4322_JaffaCakes118
.dll windows:4 windows x86 arch:x86

5942e35615c33eb64329807bd9b49b51

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
SearchPathA
SetCurrentDirectoryA
WritePrivateProfileStructA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetProcAddress
GetProfileIntA
BeginUpdateResourceA
BuildCommDCBAndTimeoutsA
RtlUnwind
InterlockedCompareExchange
Sleep
InterlockedExchange
SetFilePointer
ReadFile
DeleteFileW
CloseHandle
GetTempPathW
GetTempFileNameW
LoadLibraryA
lstrcmpW
DisableThreadLibraryCalls
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
CreateIoCompletionPort
SetupComm
SetUnhandledExceptionFilter
lstrcmpiW
LocalAlloc
CreateMutexA
PostQueuedCompletionStatus
FreeLibraryAndExitThread
SetEvent
WaitForSingleObject
ReleaseMutex
DeviceIoControl
SetCommState
GetCommState
GetSystemDirectoryA
FreeLibrary
GetVersionExA
GlobalFree
GlobalAlloc
lstrlenA
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
SetLastError
GetLocaleInfoA
LoadLibraryW
lstrcpyA
lstrcmpiA
GetLogicalDriveStringsA
GlobalUnlock
LocalFree
FormatMessageW
GetVersion
GetCommandLineA
CreateFileW
VirtualProtect

user32

wsprintfW
PostThreadMessageA
DispatchMessageA
TranslateMessage
GetMessageA
CharLowerW
CreateDesktopA
FindWindowA
InsertMenuA
MapVirtualKeyExA
PtInRect
ScreenToClient
wsprintfA
MessageBoxA
SendMessageA
LoadMenuA
TranslateAcceleratorA
TranslateAcceleratorW
LoadCursorA
SetPropA
LoadAcceleratorsA
GetPropA
DefFrameProcA
DialogBoxParamW
SetWindowTextW
GetDC
DrawIcon
ReleaseDC
GetCursorPos
LoadStringW
MessageBoxW
SetFocus
SendMessageW
EndDialog
GetDlgItem
GetWindowPlacement
SetWindowPlacement
ShowWindow
LoadBitmapW
EnableWindow
LoadIconW

advapi32

CreateServiceA
RegRestoreKeyA
ObjectOpenAuditAlarmA
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
RegSetValueExW
RegCreateKeyExW
EnumServicesStatusA
CryptAcquireContextW
CryptReleaseContext
RegCloseKey
ChangeServiceConfigA

gdi32

CreateICA
EnumFontFamiliesA
GetMetaFileA
EnumICMProfilesA
CreateDCA
GetTextExtentPoint32A

ole32

StringFromGUID2

msvcrt

wcslen
wcscmp
free
_initterm
malloc
_adjust_fdiv
_except_handler3
time
localtime
memset
strcpy
_stricmp
strlen
strcat
realloc
memcpy
_mbscpy
_amsg_exit
_XcptFilter
sprintf
_wcsicmp
wcstoul
atol
atoi
wcsstr
strstr
strncpy
wcscpy

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5942e35615c33eb64329807bd9b49b51

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcrt

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB