a64fb5d03f4aeff00d435caf4f7b839f_JaffaCakes118

General

Target

a64fb5d03f4aeff00d435caf4f7b839f_JaffaCakes118
Size

189KB
MD5

a64fb5d03f4aeff00d435caf4f7b839f
SHA1

a912aef3af98aaa98594dc30e7dea66df589e340
SHA256

b0edfebfcec853e94a563d4e9c75f4e61ce5541e9bdb03245559f14dc67f71cb
SHA512

5dab0c397c8b825448b41c480e75f55b9cd370b3e7c270c5ebfd0361257f93cc7c0b9518bb82e46cde39086235ecdca3ff74cd82abe9b7bed6f51d9186c2f909
SSDEEP

3072:/2nGZ/Vn8CqAdZxTLskbt+Mbm33UICD0ZKN9mWm/bhtZ6C:h5Vn8CzdZ57cfkTIzWmDhtZ6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a64fb5d03f4aeff00d435caf4f7b839f_JaffaCakes118

Files

a64fb5d03f4aeff00d435caf4f7b839f_JaffaCakes118
.dll windows:5 windows x86 arch:x86

f58e36c9dac44c3e7f8dd8000b39456a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcatW
CreateFileW
ExitProcess
GetWindowsDirectoryW
VirtualAlloc

user32

DefFrameProcW
DefWindowProcW
DialogBoxParamW
DrawFocusRect
DrawMenuBar
EnableMenuItem
EndDialog
FrameRect
GetClientRect
GetDC
GetDlgItem
GetDlgItemInt
GetDlgItemTextW
GetKeyState
GetMenu
GetMessageW
GetSubMenu
GetSystemMenu
CreateWindowExW
IsCharAlphaW
IsDlgButtonChecked
LoadAcceleratorsW
LoadCursorW
LoadStringW
MessageBoxW
PostMessageW
PostQuitMessage
ReleaseCapture
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetCapture
SetCursor
SetCursorPos
SetDlgItemTextW
SetFocus
SetWindowLongW
SetWindowsHookExW
TranslateAcceleratorW
TranslateMDISysAccel
UnhookWindowsHookEx
CheckRadioButton
CheckMenuItem
CharUpperBuffW
CallWindowProcW
LoadIconA
GetWindowLongW

comdlg32

PrintDlgW
GetOpenFileNameW
FindTextW

advapi32

RegOpenKeyExW

Sections

.text
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

t1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

t2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 748B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f58e36c9dac44c3e7f8dd8000b39456a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

Sections

.text Size: 182KB - Virtual size: 182KB

.data Size: 512B - Virtual size: 84B

t1 Size: 1024B - Virtual size: 1000B

t2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 748B

.text
Size: 182KB - Virtual size: 182KB

.data
Size: 512B - Virtual size: 84B

t1
Size: 1024B - Virtual size: 1000B

t2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 748B