96b117c91c55e8b5be6db75a5fcf334b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

96b117c91c55e8b5be6db75a5fcf334b_JaffaCakes118
Size

9KB
MD5

96b117c91c55e8b5be6db75a5fcf334b
SHA1

e249330adf3d0f003b14715a2b2eeb57e8a923c7
SHA256

a8184a20e93df1e158ccdf289b36e275a19741b59ff48ba3c4d44588622cbabb
SHA512

844f51e07422657819283e7fd34d2f537a76ac36cae7dd9f1cbe384fe4974ee9d9f91b9682d935ca7391e4b9f6c4797b3b8105ff5245b0115a8cd90747817f7b
SSDEEP

192:kKPEVE1Dw97iIER/YabfF2XkFqAz7nAwVA+qyKQaLLmxpH0jTNJ4iIw:kKPqJi5RA47nA6A+xKQV8jTL9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
96b117c91c55e8b5be6db75a5fcf334b_JaffaCakes118

Files

96b117c91c55e8b5be6db75a5fcf334b_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

9d02b8a9f4bcad0bc30c3c1a3eb2a90c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

BuildCommDCBW
CancelIo
ConnectNamedPipe
ConvertDefaultLocale
CreateFileA
CreateTapePartition
CreateWaitableTimerA
DefineDosDeviceW
ExitProcess
GetCommModemStatus
GetCompressedFileSizeA
GetFileTime
GetLogicalDrives
GetNamedPipeHandleStateW
GetOverlappedResult
GetPriorityClass
GetPrivateProfileStringW
GetStringTypeA
GetStringTypeExA
OpenFileMappingA
PeekConsoleInputW
ReadConsoleInputW
SetNamedPipeHandleState
SetTapePosition
UnmapViewOfFile
WriteProcessMemory
lstrcmpi

user32

AdjustWindowRect
CharToOemW
DestroyWindow
DrawCaptionTempW
EnumDesktopsA
EnumDisplayDevicesW
FindWindowExA
GetLastActivePopup
GetQueueStatus
GetUserObjectInformationA
GetUserObjectInformationW
GetUserObjectSecurity
GetWindowInfo
GetWindowRgn
InvalidateRgn
IsClipboardFormatAvailable
MapVirtualKeyExA
PackDDElParam
RegisterClassW
RegisterDeviceNotificationW
SetDlgItemTextA
SwapMouseButton

gdi32

CombineTransform
CreateColorSpaceW
CreateEnhMetaFileA
CreateFontW
CreatePenIndirect
DeleteColorSpace
DeviceCapabilitiesExA
EnumFontFamiliesExA
GetCharABCWidthsFloatW
GetCharABCWidthsW
GetCurrentPositionEx
GetFontData
GetICMProfileA
GetMetaFileW
GetNearestPaletteIndex
LPtoDP
OffsetClipRgn
PolyTextOutW
Polygon
SetBoundsRect
SetICMProfileW
SetTextCharacterExtra
SetTextColor
SetTextJustification

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d02b8a9f4bcad0bc30c3c1a3eb2a90c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 512B - Virtual size: 8KB

.data Size: 8KB - Virtual size: 28KB

.xdata Size: - Virtual size: 20KB

.rsrc Size: - Virtual size: 8KB

.text
Size: 512B - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 28KB

.xdata
Size: - Virtual size: 20KB

.rsrc
Size: - Virtual size: 8KB