8dd7fe32a67cc61556e7acc03ae12856_JaffaCakes118

General

Target

8dd7fe32a67cc61556e7acc03ae12856_JaffaCakes118
Size

84KB
MD5

8dd7fe32a67cc61556e7acc03ae12856
SHA1

3b74d3dab95f0f397f8c045e74e31901da0ada56
SHA256

9fee0c0087bbd77ffba4ce2cda7efc846e317245b21dcbfbdf43d57a7afadf94
SHA512

841333dbf74a338452b85d12ea9e867343811875b191e0e5830890b24b97a17c454c709574b8fb2e15f7d89d944ae84361580e740f3b2eb9b9e7ec12e7bebe2e
SSDEEP

1536:NPetNlKBKi6TGbyN3DV4HnmoOG2Y/lh1j3wpYAZByIEhiaZq1qnuJb6r:NPEkgi6TGb8ZxcNlspY6cIyJZYquJb6r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8dd7fe32a67cc61556e7acc03ae12856_JaffaCakes118

Files

8dd7fe32a67cc61556e7acc03ae12856_JaffaCakes118
.dll windows:4 windows x86 arch:x86

68393a978182c96ce61c54e3fe60308b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA

mfc42

ord540
ord3663
ord858
ord800
ord860
ord5440
ord6383
ord825
ord5450
ord6394
ord535
ord4274
ord6375
ord4486
ord2554
ord2512
ord823
ord3922
ord1089
ord5199
ord2396
ord3346
ord5731
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord3953
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord5300
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord6467
ord2976
ord1168
ord342
ord1577
ord1197
ord1570
ord1243
ord1255
ord1578
ord1253
ord1116
ord1176
ord1575
ord826
ord600
ord1182
ord269

msvcrt

__CxxFrameHandler
_adjust_fdiv
??1type_info@@UAE@XZ
__dllonexit
_initterm
_onexit
_mbsnbcpy
strstr
malloc
free

kernel32

DeviceIoControl
LocalAlloc
LocalFree
GetVersionExA
CreateFileA
CloseHandle

Exports

Exports

CloseMidiDevice
DeferredSetUserDLSFile
IsPlaying
OpenMidiDevice
SetGMDLSFile
SetUserDLSFile
UnLoadUserDLS

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68393a978182c96ce61c54e3fe60308b

Headers

File Characteristics

Imports

setupapi

mfc42

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 720B

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 720B