a3633220b7c9f1aaaddd00b46d9447f7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a3633220b7c9f1aaaddd00b46d9447f7_JaffaCakes118
Size

29KB
MD5

a3633220b7c9f1aaaddd00b46d9447f7
SHA1

e00e6d15ac799be926051ab23a8803c5e70ff91d
SHA256

20ca515988ee8be6ce1a8e1324bb7531dc4036c9d3b386235c45116fc56117d9
SHA512

ebf9357888507bfe8038784b0836d958bb237b57ed6ab4dcb20d930b6f736702b95dcd3115a5657611c845bce93d8270ad334bdbec6b86359749aa25f24b3334
SSDEEP

768:3o9Jn6OxqPWlY/Fp5ESq0BGEn+2xgpO3jm9A6O7vaze:3YJn9lAJq0BGygORzaze

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a3633220b7c9f1aaaddd00b46d9447f7_JaffaCakes118

Files

a3633220b7c9f1aaaddd00b46d9447f7_JaffaCakes118
.dll windows:1 windows x86 arch:x86

3e3db8f32ebd2961f1b5a22805c3c982

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetActiveWindow
MessageBoxA
wsprintfA

kernel32

CloseHandle
CreateEventA
CreateFileA
CreateMutexA
CreateThread
DeleteFileA
ExitProcess
ExitThread
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetStdHandle
GetVersion
LoadLibraryA
ReleaseMutex
SetConsoleCtrlHandler
SetEvent
SetFilePointer
SetStdHandle
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WriteFile

matlab.exe

mexErrMsgTxt
mxCalloc
mxCreateDoubleMatrix
mxCreateNumericArray
mxFree
mxGetDimensions
mxGetNumberOfDimensions
mxGetPr
mxIsComplex
mxIsDouble
mxIsEmpty
mxIsNumeric

Exports

Exports

mexFunction

Sections

BEGTEXT
Size: 20KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DGROUP
Size: 3KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e3db8f32ebd2961f1b5a22805c3c982

Headers

File Characteristics

Imports

user32

kernel32

matlab.exe

Exports

Exports

Sections

BEGTEXT Size: 20KB - Virtual size:

DGROUP Size: 3KB - Virtual size:

.bss Size: 1KB - Virtual size:

.idata Size: 1KB - Virtual size:

.edata Size: 512B - Virtual size:

.reloc Size: 1KB - Virtual size:

.rsrc Size: 512B - Virtual size:

BEGTEXT
Size: 20KB - Virtual size:

DGROUP
Size: 3KB - Virtual size:

.bss
Size: 1KB - Virtual size:

.idata
Size: 1KB - Virtual size:

.edata
Size: 512B - Virtual size:

.reloc
Size: 1KB - Virtual size:

.rsrc
Size: 512B - Virtual size: