a35af8bb1b0d73774a9858064a717508_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a35af8bb1b0d73774a9858064a717508_JaffaCakes118
Size

61KB
MD5

a35af8bb1b0d73774a9858064a717508
SHA1

f9580aed689b3b0353c47fc583064007cf28924c
SHA256

3150e19a68b334a6734f8785d5e9b6f192814fcc28fc0737fa6ad1c1914eeb87
SHA512

73b35d1ea7eec8b6db1e431dc7dde53d2e633ef03a6e648154388991d14e3390ac6e36f53ef0e58b0947dc9a83904eeb098f49b1d7fe355753c32b22c87cbe44
SSDEEP

1536:ToQTfGhHrhH09SKM1T83zDMVtEpya7hdE7uWnqXH:U3HVH0gQACp74uWnqXH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a35af8bb1b0d73774a9858064a717508_JaffaCakes118

Files

a35af8bb1b0d73774a9858064a717508_JaffaCakes118
.dll windows:5 windows x86 arch:x86

1994846a567cbc113051b4e498e6dec6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shell32

DragFinish
SHGetDesktopFolder

ole32

ProgIDFromCLSID
CoGetClassObject
OleUninitialize
CoDisconnectObject
IsAccelerator
CreateStreamOnHGlobal
OleSetMenuDescriptor

kernel32

UnmapViewOfFile
GetModuleHandleA
MapViewOfFile
GetModuleHandleA
VirtualAlloc
GetCommandLineA
GetTimeZoneInformation
CreateThread
TerminateProcess
GetTempFileNameA
FlushFileBuffers
CreateFileMappingW
WaitForMultipleObjects
CreateDirectoryA
VirtualQueryEx
EnumCalendarInfoA
GetStringTypeExA
GetUserDefaultLCID
IsValidLocale
lstrlenW
CreateFileW
CloseHandle
OpenMutexA
LocalAlloc
RaiseException
VirtualFree
GetComputerNameW
SetErrorMode
lstrlenW
SizeofResource

dpwsch40

_LCosh
_Stof
_Dtest
_Getcoll
_FSinh
_Sinh
_LDscale
_LSinh
_FEps

gdi32

SetROP2
FillRgn
CreateHalftonePalette
PatBlt
StretchDIBits
GetNearestColor
CreateRectRgnIndirect
LPtoDP
FrameRgn
MoveToEx
Ellipse
MaskBlt
DeleteEnhMetaFile
SetTextAlign
GetWindowOrgEx
TextOutA
Rectangle
CreateDIBSection

oleaut32

SafeArrayPtrOfIndex
VariantCopy
SafeArrayCreateVector
SafeArrayGetLBound
SafeArrayDestroy

user32

GetIconInfo
GetWindowTextLengthA
MessageBeep
GetKeyboardType
ClientToScreen
SetWindowRgn
GetMenuStringA
DeferWindowPos
WinHelpA
FindWindowExA
DrawTextA
InsertMenuA
GetClientRect
LoadStringA
GetDlgItem
CreateWindowExA
EnableWindow
GetDesktopWindow
ShowWindow
RegisterClassW
ReleaseDC
EndPaint
TranslateMessage
GetFocus
GetForegroundWindow
GetWindowPlacement
SetScrollInfo
EnumClipboardFormats
GetClipboardData
IsChild
GetSystemMenu
SetTimer
CreateIcon
PostMessageA
OemToCharA
PostMessageW
CallWindowProcA
GetCaretPos
GetDoubleClickTime
GetSubMenu
SetWindowTextW
GetScrollPos
GetCursor

comctl32

ImageList_Create
ImageList_DragEnter
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_Add

wininet

InternetCrackUrlA

comdlg32

FindTextA

winmm

PlaySoundA

imm32

ImmSetCompositionFontA

Exports

Exports

ConvertSidToString
CreateProcessNotify
DllClientCleanup
ipcohare
DllClientStartup

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1994846a567cbc113051b4e498e6dec6

Headers

File Characteristics

Imports

shell32

ole32

kernel32

dpwsch40

gdi32

oleaut32

user32

comctl32

wininet

comdlg32

winmm

imm32

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB