a19f6d444a847e9d00fcfcdfb30fecad_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a19f6d444a847e9d00fcfcdfb30fecad_JaffaCakes118
Size

24KB
MD5

a19f6d444a847e9d00fcfcdfb30fecad
SHA1

fdf33bf756bea13cb12d846ca5584cee571d68d9
SHA256

de5d169f2f2d6e5cda25c10dd853e56f92fea7ad2858494aa8290b24841c6b34
SHA512

a011b76824cfd8a892282b81c2f0655b8d22a132a6d6eeed6f56c95cc9dc95d1e92414fb88636d9b9f1751f018e9633e44f097ef29047dd8c848a3146d779a30
SSDEEP

192:TjTiqfmcwvkwdAGC4F5k7KSsJRl495YvgbCge7Vaa6pq1+wvVpQvC+MT8ItN:TjTdXZwdojqlAlyRnqq1npQvc8+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a19f6d444a847e9d00fcfcdfb30fecad_JaffaCakes118

Files

a19f6d444a847e9d00fcfcdfb30fecad_JaffaCakes118
.dll windows:4 windows x86 arch:x86

73f1ce3029e3777cb04af9dc1cbd9242

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

RegQueryValueExW
RegCloseKey
RegCreateKeyW
IsTextUnicode
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW

kernel32

GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetLocalTime
GetUserDefaultLCID
GetDateFormatW
GetTimeFormatW
GlobalLock
GlobalUnlock
GetFileInformationByHandle
CreateFileMappingW
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GlobalFree
GetLocaleInfoW
LocalFree
LocalAlloc
lstrlenW
LocalUnlock
CompareStringW
LocalLock
FoldStringW
CloseHandle
lstrcpyW
ReadFile
CreateFileW
lstrcmpiW
GetCurrentProcessId
GetProcAddress
GetCommandLineW
lstrcatW
FindClose
FindFirstFileW
GetFileAttributesW
lstrcmpW
MulDiv
lstrcpynW
LocalSize
GetLastError
WriteFile
SetLastError
WideCharToMultiByte
LocalReAlloc
FormatMessageW
GetUserDefaultUILanguage
SetEndOfFile
DeleteFileW
GetACP
UnmapViewOfFile
MultiByteToWideChar
MapViewOfFile
UnhandledExceptionFilter

user32

GetClientRect
SetCursor
ReleaseDC
GetDC
DialogBoxParamW
SetActiveWindow
GetKeyboardLayout
DefWindowProcW
DestroyWindow
MessageBeep
ShowWindow
GetForegroundWindow
IsIconic
GetWindowPlacement
CharUpperW
LoadStringW
LoadAcceleratorsW
GetSystemMenu
RegisterClassExW
LoadImageW
LoadCursorW
SetWindowPlacement
CreateWindowExW
GetDesktopWindow
GetFocus
LoadIconW
SetWindowTextW
PostQuitMessage
RegisterWindowMessageW
UpdateWindow
SetScrollPos
CharLowerW
PeekMessageW
EnableWindow
DrawTextExW
CreateDialogParamW
GetWindowTextW
GetSystemMetrics
MoveWindow
InvalidateRect
WinHelpW
GetDlgCtrlID
ChildWindowFromPoint
ScreenToClient
GetCursorPos
SendDlgItemMessageW
SendMessageW
CharNextW
CheckMenuItem
CloseClipboard
IsClipboardFormatAvailable
OpenClipboard
GetMenuState
EnableMenuItem
GetSubMenu
GetMenu
MessageBoxW
SetWindowLongW
GetWindowLongW
GetDlgItem
SetFocus
SetDlgItemTextW
wsprintfW
GetDlgItemTextW
EndDialog
GetParent
UnhookWinEvent
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsDialogMessageW
PostMessageW
GetMessageW
SetWinEventHook

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73f1ce3029e3777cb04af9dc1cbd9242

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.text Size: 2KB - Virtual size: 4KB

.rdata Size: 18KB - Virtual size: 20KB

.reloc Size: 512B - Virtual size: 4KB

.rsrc Size: 3KB - Virtual size: 4KB

.text
Size: 2KB - Virtual size: 4KB

.rdata
Size: 18KB - Virtual size: 20KB

.reloc
Size: 512B - Virtual size: 4KB

.rsrc
Size: 3KB - Virtual size: 4KB