a59e4e84d284a1c22b1b4651fe7b1b7d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a59e4e84d284a1c22b1b4651fe7b1b7d_JaffaCakes118
Size

124KB
MD5

a59e4e84d284a1c22b1b4651fe7b1b7d
SHA1

aab62063d72600acaba4c256b7794b1c00170b5c
SHA256

4c42ad4bd0c3d6cb2497d0e845298178d1bf3a6ce4b41a921b54d2b2f92d3f07
SHA512

0dc8d3b8b2781721ad672cd6743825c1ff7814701428bc23a61954648a86669b0813a7c3ddd63201f9defb4208970386ad4d1f1c5e94fc1027c9c7024b39d78a
SSDEEP

3072:S4B9cEXV8c+a6wc1489KNXo0n5rc8X9mzT:S4EEFOa674UKFo05rZsX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a59e4e84d284a1c22b1b4651fe7b1b7d_JaffaCakes118

Files

a59e4e84d284a1c22b1b4651fe7b1b7d_JaffaCakes118
.dll windows:4 windows x86 arch:x86

b02bd51bed9db3af26793f4b398fbfa3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteAtom
ClearCommBreak
LoadLibraryW
_lclose
ExitThread
GetWindowsDirectoryA
GetProcAddress
HeapAlloc
GetModuleHandleA
GetLastError
VirtualProtect
GetStringTypeW
FreeLibrary
FindFirstFileW
lstrlenA
CheckRemoteDebuggerPresent
VirtualAlloc
GetCurrentProcess
VirtualFree
WriteConsoleW

msvcrt

_wcmdln
_iob
strncpy
__initenv
__p__fmode
_controlfp
swscanf
__p__commode
_vsnprintf
__dllonexit
_cexit
islower
wcschr
wcscat
_wtol
_purecall
_except_handler3
_ftol
__winitenv
_c_exit
_snwprintf
wcslen
malloc
memcpy
wcscpy
swprintf
free
__CxxFrameHandler
_exit
_adjust_fdiv
wcscmp

user32

CheckDlgButton
GetProcessWindowStation
DispatchMessageW
MapWindowPoints
LoadCursorA
RegisterClassA
SetScrollPos
GetCursorPos
GetParent
ReleaseCapture
CopyRect
ScreenToClient
wsprintfW
UnregisterClassW
DialogBoxParamA
IsWindow
LoadCursorW
BeginPaint
ReleaseDC
LoadImageW
SetCapture
LoadMenuW
DestroyWindow
SendMessageA
SendMessageW
GetMenuItemCount
ClientToScreen

shell32

SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHGetFolderPathW

opengl32

GlmfBeginGlsBlock
glColor3ui
glTexCoord2dv
wglShareLists
glTexCoord2d
glStencilMask
glColor4i
glColor4d
glColor4f
glFogfv

Exports

Exports

KmmbTobyhhTytqsGf
BxsUoytkpPsl
TanudMqnek

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crt
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b02bd51bed9db3af26793f4b398fbfa3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

shell32

opengl32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.edata Size: 512B - Virtual size: 124B

.crt Size: 512B - Virtual size: 17B

.data Size: 70KB - Virtual size: 70KB

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 512B - Virtual size: 90B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.edata
Size: 512B - Virtual size: 124B

.crt
Size: 512B - Virtual size: 17B

.data
Size: 70KB - Virtual size: 70KB

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 512B - Virtual size: 90B